[ciapug] Securing session variables

[Chris Hettinger]

What are your suggestions in regards to securing session variables in =
web site applications?

I am currently working on a project in which I am using session variable =
to store some key identifiers so the next page(s) can use them. I am =
wondering if I could do anything to secure these variables between page =
transitions.

Could I encode them in some way on page X, before redirecting to page Y. =
Then having something decode it on page Y so it can be used ??

-Chris Hettinger, Web Specialist
-IFMC/ENCOMPASS
-www.encompas.com
-(515) 279-8730



CONFIDENTIALITY NOTICE:  This communication, including any attachment, =
may contain confidential information and is intended only for the =
individual or entity to whom it is addressed.  Any review, =
dissemination, or copying of this communication by anyone other than the =
intended recipient is strictly prohibited.  If you are not the intended =
recipient, please contact the sender by reply email, delete and destroy =
all copies of the original message.'