Ok interesting situation happended today. I have been developing a shopping cart and website for a friend for about 4 months at phpwebhosting.com There services rocks. But their Secure Server and the normal server is different machines.
When ordering stuff on the site a Users orders are stored in sessions so then when they go to Check Out they goto SSL which inturns goes to the Secure server (different machine) and looses all my sessions. So question is anyone have a good suggestion to pass that info to the other server?
I could store it in the DB then pass the db id or order number ect to the other server but that seems people could change that and mess with stuff if they wanted.
Any good advise or good cryptology i should look into would be appreciated.
Using SSL the entire time is not a solution,
Thanks
