Posted by Alvaro G Vicario on 06/16/05 17:40

*** Gordan wrote/escribió (Thu, 16 Jun 2005 13:43:55 +0200):
> here's my problem. On my pages I have URL souch as these
> "page.php?id=2&subpage=3&param=65". For security reasons I would like to add
> another parameter. It would be created like this
> md5($param1.$param2.$some_constant). I would then add that MD5 string to my URL
> and stop users from altering URL manually.

Then you should be using a more secure mechanism, such as sessions. URL
parameters are useful when user cannot break anything or even is encouraged
to alter it.


--
-- Álvaro G. Vicario - Burgos, Spain
-- http://bits.demogracia.com - Mi sitio sobre programación web
-- Don't e-mail me your questions, post them to the group
--

• Next in forum: Newbie Question
• Prev in forum: Re: Storing Dates in DB
• Thread view: Re: rewriting URLs

[Reply to this message]