PHPDeveloper: PHP News, Views and Community

Subscribe

@phpdeveloper.org

News Archive

Community News: Latest PECL Releases (06.17.2025)

Community News: Latest PECL Releases (06.10.2025)

Community News: Latest PECL Releases (06.03.2025)

Community News: Latest PECL Releases (05.27.2025)

Community News: Latest PEAR Releases (05.26.2025)

Community News: Latest PECL Releases (05.20.2025)

Community News: Latest PECL Releases (05.13.2025)

Community News: Latest PECL Releases (05.06.2025)

Community News: Latest PECL Releases (04.29.2025)

Community News: Latest PECL Releases (04.22.2025)

Looking for more information on how to do PHP the right way? Check out PHP: The Right Way

Community News:
Notes on PHP Session Security

byChris Cornutt Mar 03, 2004 @ 13:22:47

In a new entry to his SitePoint weblog, Harry Fuecks has some comments and suggestions about PHP session security and how it could effect your site.

He gives these things to look out for is to just not provide much information about the user in the session itself. It might seem tempting to grab all of the information you can and cram it into the session vars, but that's also another large security hole that anyone with a bit of knowledge can access...

tagged:

Link:

Trending Topics: