Checking for session hijacking : md5 « Utility Function « PHP

Home
PHP
1.Chart
2.Class
3.Components
4.Cookie Session
5.Data Structure
6.Data Type
7.Date
8.Design Patterns
9.Development
10.DNS
11.Email
12.File Directory
13.Form
14.Functions
15.Graphics Image
16.HTML
17.Language Basics
18.Login Authentication
19.Math
20.MySQL Database
21.Network
22.Operator
23.PDF
24.Reflection
25.Statement
26.String
27.Utility Function
28.Web Services SOAP WSDL
29.XML
PHP » Utility Function » md5 




Checking for session hijacking
 
<?php
session_start(  );
$user_check = md5($_SERVER['HTTP_USER_AGENT'] . $_SERVER['REMOTE_ADDR']);
if (empty($_SESSION['user_data'])) {
    session_regenerate_id(  );
    echo ("New session, saving user_check.");
    $_SESSION['user_data'] = $user_check;
}
if (strcmp($_SESSION['user_data'], $user_check!== 0) {
    session_regenerate_id(  );
    echo ("Warning, you must reenter your session.");
    $_SESSION = array(  );
    $_SESSION['user_data'] = $user_check;
}

else {
    echo ("Connection verified!");
}
?>
  
  














Related examples in the same category
1.string md5 ( string str [, bool raw_output] )
2.string md5 ( string str [, bool raw_output] ) produces a data checksum in exactly the same way as sha1( );
3.Creating an md5 signature
4.PHP's basic md5() function
5.The protect() MD5 Form Fingerprint Generator
6.md5.php
7.Insert a unique ID into a form
java2s.com  | Contact Us | Privacy Policy
Copyright 2009 - 12 Demo Source and Support. All rights reserved.
All other trademarks are property of their respective owners.