On Thu, April 28, 2005 10:51 pm, William Stokes said: > How about preventing access by hitting the browsers back button after the > user has logged out?
Try sending an md5 or uniqid out as TYPE=HIDDEN with your login, and marking it "used" after the first login. Also educate the users to CLOSE THEIR BROWSER to clear out all credentials. -- Like Music? http://l-i-e.com/artists.htm -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
