What is the best way to protect PHP login cookie data?

Question

What is the best way to protect PHP login cookie data?

I am creating a PHP login system and I want to know how to best protect the string of user information in my cookie. I thought about encrypting the string with a key somehow? Is this the best way? I am new to this.

Thanks in advance.

+5

security php cookies data-protection

mattsven Jun 21 '10 at 14:57

source share

5 answers

. , , //, . PHP, cookie , . cookie. .

, , - , . , cookie .

, . , (, md5, sha-1 ..), ( , , , - - , ).

+4

andyortlieb 25 . '10 14:45

cookie. cookie , , :

cookie - , , .
cookie , , , , , , , , ip /...

, , .

+2

Dominique 21 . '10 15:51

cookie , HMAC. hash_hmac PHP.

" ", , , . , cookie . - , , , , cookie , /.

0

Charles 21 . '10 15:12

! , PHP/framework-of-your-choice. , UID, . cookie. , manually.

, , , . , . , ID (DB, XML ..).

0

sibidiba 25 . '10 16:31

Aaron harun · Accepted Answer · 2010-06-21T15:01:10+0000

Do not store confidential information in cookies. Store the session hash identifier to connect a registered user to your account.

What is the best way to protect PHP login cookie data?

More articles: