Should *NEVER* make a password a session variable.
If anything, a user ID, user access code, username and any groups they belong to.
Security issues related to php and mysql usage. How to make your code secure? Security measures and configurations? It's all in here!
1 post • Page 1 of 1