[thelist] ASP, HTTP_REFERRER, Session questions

aardvark roselli at earthlink.net
Fri Sep 21 09:21:42 CDT 2001

> From: "Beau Hartshorne" <beau at members.evolt.org>
> Aardvark, Anthony thank you. This is what I think I should do:
> Every page (except the login page) updates a Session object like so:

while not a bad approach, just keep in mind that users without 
cookies enabled, as well as users who have their sessions expire 
(by walking away, working, etc.) will not benefit from this 

the reason i remanded the URL variable to the query string and 
hidden fields is because it's completely friendly for all browsers, as 
opposed to just cookied or sessioned (making up new words) 

More information about the thelist mailing list