[eluser]alexanderweiss[/eluser]
[quote author="richthegeek" date="1265739300"]there are easier ways - store a per-session hash in the session/cookie and in the database related to that users row.
For example, create a hash like "sha1( time() . rand() )" and store that |40| hex in both then query for that.[/quote]
You mean I should put the password in a table, along with this hash? So I can retrieve the password when I query for the hash.