In my database system I currently use PHP4 Session Management, storing the username and password as session variables and then authenticating them in my MySQL database at each page. Is this system acceptably secure? Should I be using HTTP authentication instead?
Best way to authenticate
- Thread starter admin
- Start date