Folks,
For the past four years or so I've been happily using session variables to authenticate users. So, if someone entered a private area of a website that I'd been involved in, then the user would be given a session variable after signing on and the website would confirm that the user has permission to be there by checking for the presence of the session variable.
Now, all of a sudden I've discovered that Zone Alarm does NOT allow you to use session variables in any way shape or form. This is potentially disasterous news for me since it means that anyone who uses any of my applications with Zone Alarm switched on is now going to be shut out and the application (online shop or whatever) and the website would be rendered useless.
Could anyone please offer me some advice on this very worrying matter?
