Page 1 of 1

session security

Posted: Wed Jan 03, 2007 9:10 pm
by zyklone
good day!

i just want to ask. how can i make sure that my session is secured. what is the best practice dealing with the session. thanks!

Posted: Wed Jan 03, 2007 9:11 pm
by feyd
Secured how?

Posted: Wed Jan 03, 2007 10:05 pm
by zyklone
feyd wrote:Secured how?
hijacking the session... how to prevent that...

Posted: Thu Jan 04, 2007 12:19 am
by matthijs
That's a broad question. But there's a lot of info, for example
http://shiflett.org/articles/session-fixation
http://phpsec.org/projects/guide/