encoding data in session?

Discussions of secure PHP coding. Security in software is important, so don't be afraid to ask. And when answering: be anal. Nitpick. No security vulnerability is too small.

Moderator: General Moderators

Post Reply
GeXus
Forum Regular
Posts: 631
Joined: Sat Mar 11, 2006 8:59 am

encoding data in session?

Post by GeXus »

Is there any reason to base64 encode data put into session? or to encrypt that data? is it generally safe to just put it in session as is...?
User avatar
feyd
Neighborhood Spidermoddy
Posts: 31559
Joined: Mon Mar 29, 2004 3:24 pm
Location: Bothell, Washington, USA

Post by feyd »

It depends on where the session data is stored and the security of the server. For most things, it's safe as is.

If you want to be paranoid, use encryptions.
Post Reply