So how are most people handling the situation you mentioned below? After getting verfified in a https, how is the session information being passed back to the http?
Jeff ----- Original Message ----- From: "Ernest E Vogelsinger" <[EMAIL PROTECTED]> To: "Jason Sheets" <[EMAIL PROTECTED]> Cc: "Leo Spalteholz" <[EMAIL PROTECTED]>; <[EMAIL PROTECTED]> Sent: Friday, February 21, 2003 3:40 AM Subject: Re: [PHP] MAC address user recognition? > >If you were concerned about the overhead of SSL you could make only your > >login page go over SSL and the rest of your site go over normal HTTP. > > You can do this, but you cannot to pass the session token via cookie, since > https://yourdomain.com > and > http://yourdomain.com > are seen as different hosts, thus a cookie (default setting) will not be > shared among these. -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
