Pathologically Eclectic Rubbish Lister | |
PerlMonks |
comment on |
( [id://3333]=superdoc: print w/replies, xml ) | Need Help?? |
If you need to store any information in the cookie, because doing db lookups for same tiny pieces of information, such as a username, user id or some sorta preference.
1. Encrypt it. If the md5 of the encrypted info doesn't match the md5 of the encrypted/md5 part, you know someone was tampering with it. Yes, you can do a lot of caching tricks server side, but sometimes, you don't have a choice. -s Bart: God, Schmod. I want my monkey-man. In reply to Re: Is this a secure way to prevent cookie tampering
by exussum0
|
|