Hi. I am trying to implment a secure website using Apache 1.3.27, PHP 4.2.3, MySQL 3.23.53 and mod_ssl 2.8.12-1.3.27 and openSSL 0.9.6h that is running on a Redhat Linux 7.2 Machine
I am using session in my implementation with cookie enabled in both the php.ini file as well as in the web-browser.
Each user has at least one account. Each account is unique.
I want to limit each account user to only one session in a window at any one point in time. This means that each account can only open one window anytime. Even if he or she copies the url and pastes it on another new browser window, he or she should not be allowed to access the system through the second window.
But multiple accounts can be open on one computer. This is to account for cases whereby a single user has multiple accounts on the system.
The question is this. I can achieve this in the Internet Explorer running a Windows 95 but not on Netscape running on my Linux machine.
My next question is this. If the user do not exit properly from the system, the user's session will be maintained causing the system to not allow the user to log in again unless the server is restarted or the administrator removes the session. Is there anyway to do this automatically?
Please advice. Thanks in advanced.
