security problems when loging in

soniared2002

Hi All,
I was showing my web site to one of my friends, and there was a new problem discovered:
I couldn't log in to any of the loggin in areas...after awhile, i figured out that her internet options settings where set to medium, and that is why i couldn't log in..when i change the settings to LOW/MIDIUM it started to work again.
I wondered, if and how can i fix my web site that it will work (the loggins) at Medium/High internet security settings.
thanx.
Did any one have a similar problem?
Sofia

The_Chancer

Can be an IE problem with cookies, there are a couple of ways round this with IE. Look at the P3P policies available on the W3C website, or use the propogated PHPSESSID if using sessions in the URL.

Admittedly the latter option is a potential security hole, but without cookies, then personalisation of sites can be difficult.

Another way I suppose is to continually pass a variable around in a form, but anyone who knows what they are doing will be able to find this "key"...

soniared2002

i am still having problems with the topic...i found information about p3p, but it doesnt' really solves the problem, but tells the user to switch their settings...how good is that?
any ideas?
Tahnx