Help with sessionId[SOLVED]
Posted: Sun Jul 03, 2005 12:56 pm
Hi, I wanted to control session hijacking so I thought if I can store the sessionId when the user gets authenticated and compare each page session id with the one that stored in the db when user gets authenticated.
1. I use session_start() in the authentication page when password is verified
2. I store sessionid using session_id() in the db
there is no problem until now
3.I want to access sessionId(I used again session_id()) in other page to check with the entry in the db but I couldnot get the sessionid, it returns nothing.
4.I tried to store a Session variable,
$_SESSION["query"] = $query;($query has got gd content in it)
but this didnot work, i mean, no value is stored in it..why?
why is that? How cld I counter this one?
1. I use session_start() in the authentication page when password is verified
2. I store sessionid using session_id() in the db
there is no problem until now
3.I want to access sessionId(I used again session_id()) in other page to check with the entry in the db but I couldnot get the sessionid, it returns nothing.
4.I tried to store a Session variable,
$_SESSION["query"] = $query;($query has got gd content in it)
but this didnot work, i mean, no value is stored in it..why?
why is that? How cld I counter this one?