Page 1 of 1

encoding data in session?

Posted: Mon Oct 29, 2007 10:30 pm
by GeXus
Is there any reason to base64 encode data put into session? or to encrypt that data? is it generally safe to just put it in session as is...?

Posted: Mon Oct 29, 2007 11:17 pm
by feyd
It depends on where the session data is stored and the security of the server. For most things, it's safe as is.

If you want to be paranoid, use encryptions.