On 7/17/2011 1:16 AM, Phil Van wrote:
Back to Vincent's original request about session id and login: how
secure is your session id? Have you signed it? If not, someone can try
to sending random IDs and break your authentication.
Well, if you sign it and sign it properly, you basically end up wit
Le samedi 16 juillet 2011 à 22:16 -0700, Phil Van a écrit :
> Back to Vincent's original request about session id and login:
> (if you are using https, then all the above procedures do not matter)
>
It's via https, yes.
> The second idea is that you may not need to store session on the
> serve
Le samedi 16 juillet 2011 à 21:06 -0400, Perrin Harkins a écrit :
> On Sat, Jul 16, 2011 at 1:01 PM, Vincent Veyron wrote:
> To serialize your session to a string, you can do something like this:
> use Storable qw(nfreeze);
> $serialized = nfreeze \%session;
>
I see the light!
Thanks a bunch f
