SessID encryption!

PHP programming forum. Ask questions or help people concerning PHP code. Don't understand a function? Need help implementing a class? Don't understand a class? Here is where to ask. Remember to do your homework!

Moderator: General Moderators

Post Reply
User avatar
Joe
Forum Regular
Posts: 939
Joined: Sun Feb 29, 2004 1:26 pm
Location: UK - Glasgow

SessID encryption!

Post by Joe »

I am in the process of studying deep about SessionID's in PHP. I have thought about encrypting SESSID's and decrypting them whenever needed in order for extra security. The only problem is that I dont know where to start. Does anyone know any good references or ways to go about this technique.


Regards


Pr0zaK
lostboy
Forum Contributor
Posts: 329
Joined: Mon Dec 30, 2002 8:12 pm
Location: toronto,canada

Post by lostboy »

mycrpt is a possibility for bi-directional encryption/decryption...

Otherwise MD5() is fine for one way encnryption (like a password stored in a db...encrypt in on registration and then compare an md5 encrypted user submitted password to the db value
User avatar
Weirdan
Moderator
Posts: 5978
Joined: Mon Nov 03, 2003 6:13 pm
Location: Odessa, Ukraine

Post by Weirdan »

I wonder why one would encrypt sessid... it's a hash already.
Steveo31
Forum Contributor
Posts: 416
Joined: Sun Nov 23, 2003 9:05 pm
Location: San Jose CA

Post by Steveo31 »

^ yea, I don't really see why you would want to. Will you elaborate?
Post Reply