View Full Version : Sessions or Cookies ??
Mr Macro
31-05-2007, 01:26 PM
What is better sessions or cookies when making a log in ?
Florx
31-05-2007, 01:28 PM
sessions FTW!
RYANNNNN
31-05-2007, 01:29 PM
sessions FTW!
Explain why.
Invent
31-05-2007, 01:30 PM
Sessions.
As they are barely exploitable.
I know cookies can be stopped to be exploitable, but overall i think sessions are better.
Florx
31-05-2007, 01:30 PM
Safer, easier.
RYANNNNN
31-05-2007, 01:32 PM
Safer, easier.
Why are they safer?
Invent
31-05-2007, 01:34 PM
Because cookies can be easily exploited if you don't use them properly.
If you don't protect how your cookies are stored then people can gain access to your website using a javascript injection.
Florx
31-05-2007, 01:34 PM
Well if a hacker manages to get onto the users computer they might be able to see their username and password
Drompo
31-05-2007, 01:35 PM
Then you encrypt passwords using an md5 hash then don't you
Invent
31-05-2007, 01:36 PM
If it's a simple password then you can decrypt it.
Sygon..
31-05-2007, 01:37 PM
If it's a simple password then you can decrypt it.
Thats why you seed it?
Drompo
31-05-2007, 01:39 PM
then you make it so that the password has to contain numbers ect.
Invent
31-05-2007, 01:40 PM
But many people don't.
Florx
31-05-2007, 01:40 PM
Thats why you should use sessions.
Mr Macro
31-05-2007, 01:41 PM
Sessions it is then.
Luckyrare
31-05-2007, 01:41 PM
If its stored in a cookie as MD5 then you just copy the md5 hash and paste it into a new cookie. No need to decrypt it
Sygon..
31-05-2007, 01:42 PM
then you make it so that the password has to contain numbers ect.
Thats just a securer password, there are libs out there..
Want to hide these adverts? Register an account for free!
Powered by vBulletin® Version 4.2.5 Copyright © 2024 vBulletin Solutions Inc. All rights reserved.