In the past I have primarily used php as cgi scripts, and I am now trying to learn how to embed php in html. I am having trouble, even with basic implementation. Ultimately, I would like to use encrypted session_ids as tokens that are submitted with forms to prevent XSS attacks on my site. I have tried using all the following *basic* methods (within the body of the html page), to no avail:
<? echo "Hello world"; ?>
<?php echo "Hello world"; ?>
<script language="php"> echo "Hello world"; </script>
It just gets ignored, and there is blank text on the page when viewed in a browser (IE6). I use PHP scripts all the time without problems and php.ini is configured normally. Do I need some special headers to use php within html? Am I missing something obvious here? Any help is appreciated. Sorry if this is a total noob question, but I am getting desperate here.
