The "glass" effect is made simply by creating a white…

Question

0

Asked: May 11, 20262026-05-11T07:28:20+00:00 2026-05-11T07:28:20+00:00

While implementing a flash-based uploader , we were faced with an issue: Flash doesn’t

0

While implementing a flash-based uploader, we were faced with an issue: Flash doesn’t provide the correct cookies. We need our PHP Session ID to be passed via a POST variable.

We have come up with and implemented a functional solution, checking for a POST PHPSESSID.

Is POSTing the Session ID as secure as sending it in a cookie?

Possible reason for: Because both are in the http header, and equally possible for a client to forge. Possible reason against: Because it’s easier to forge a POST variable than a Cookie.

Report

Leave an answer
Cancel reply

You must login to add an answer.

Need An Account,

1 Answer

score 0 · Answer 1 · 2026-05-11T07:28:21+00:00

2026-05-11T07:28:21+00:00Added an answer on May 11, 2026 at 7:28 am

It is as secure — forging the POST is equally as easy as the cookie. These are both done by simply setting flags in cURL.

That being said, I think you’ve got a good solution as well.

0

Reply
Share
Share

- Report

How to approach applying for a job at a company ...

What is a programmer’s life like?

How to handle personal stress caused by utterly incompetent and ...

Sign Up

Sign In

Forgot Password

The Archive Base Latest Questions