PHP Beginner Help

Printable View

Show 40 post(s) from this thread on one page

04-04-2006, 07:21 PM
djr33

Alright. Makes sense.

So... using sessions as an alternative to cookies doesn't really make sense, sounds like. that's what I was hoping for.

Other ideas?
04-04-2006, 08:09 PM
Twey

Quote:

So... using sessions as an alternative to cookies doesn't really make sense, sounds like.

Yes, it does :)
04-05-2006, 12:09 AM
djr33

Well... sounds like it could work, but it's kinda roundabout... still uses cookies or does some odd thing with the links and such. I mean.... that would work, I guess... just seems less-than-equal as an alternative to cookies.

Guess those users will just have to deal with it though ^_^ Hehe....

Or... wait... yes as in it DOES make sense, or as in Yes, I'm right. Now I'm confused.

Other ideas if you're saying not to use them?
04-05-2006, 11:21 AM
Twey

Quote:

Other ideas if you're saying not to use them?

I'm saying you should use them :)

Quote:

Well... sounds like it could work, but it's kinda roundabout... still uses cookies or does some odd thing with the links and such. I mean.... that would work, I guess... just seems less-than-equal as an alternative to cookies.

That's exactly why it's superior to storing all the sensitive data in a plaintext file on the user's hard drive.

Quote:

Guess those users will just have to deal with it though ^_^ Hehe....

Hm? Sessions are more reliable than cookies, since users without cookies can still use them.
04-05-2006, 05:16 PM
djr33

well.... it'll be messy if all the urls have that line added to them. Just meant the users will have to deal with it if they don't have cookies enabled.

You say its more secure than storing in a plaintext file, then won't it just be stored in a cookie anyway if they are enabled...?
04-05-2006, 05:34 PM
Twey

Quote:

well.... it'll be messy if all the urls have that line added to them.

Not really. Most major sites use sessions, and quite a few of them seem to elect not to use cookies to store the SID, though I don't know why.

Quote:

You say its more secure than storing in a plaintext file, then won't it just be stored in a cookie anyway if they are enabled...?

No. On the server, a session identifier (SID) will be stored along with all the data stored in that session. The only thing stored in a cookie, if cookies are enabled, or on the URI, if not, is the session identifier.

Show 40 post(s) from this thread on one page