Re: [PHP] storing passwords in $_SESSION

Mon, 10 Oct 2005 11:40:50 -0700 

How secure is it to save a password in $_SESSION.

i.e. $_SESSION['password']

is it safe and is it practical?
Probably not. If you're on a shared server, I could write a PHP script to look in /tmp and read the contents of every session file there... 

-philip

--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Reply via email to