I'm looking for a way to protect my php session that contains important information. Using an IP verification is not a good idea for people on the phone. That's why I thought it might be smart to store a randomly generated key in the session and in a classic cookie. Then every x minutes check that the two keys match. Is this a good idea? I didn't find anything about this in my search. Thank you for your feedback, Jesver
source https://stackoverflow.com/questions/68143424/protect-the-session-with-the-key-in-the-session-and-in-the-cookie
Comments
Post a Comment