• 0 Vote(s) - 0 Average
  • 1
  • 2
  • 3
  • 4
  • 5
Is ci/sessions safe to use?

#1
[eluser]walrus_lt[/eluser]
Hi. Is ci/sessions safe to use? I heard that ci/session saves information in user's cookie. So...

If i do:
Code:
$this->session->set_userdata(array('id'=>$id, 'nick'=>$nick))

In another place:
Code:
if ($this->session->userdata('id') == '') die('NOT LOGED IN')

Can it be hacked if hacker creates cookie in his browser with id=1?

#2
[eluser]pistolPete[/eluser]
Just encrypt the cookie: http://ellislab.com/codeigniter/user-gui...sions.html


Digg   Delicious   Reddit   Facebook   Twitter   StumbleUpon  


  Theme © 2014 iAndrew  
Powered By MyBB, © 2002-2020 MyBB Group.