after hearing about sql injection attacks, the security of my site is
questionable. my next question is how secure are session id's to use as
a login technique? assuming that i'm using saved parameter queries to
query my databse, is there anyway that someone could create a session id
and gain access to say, my administrator account? any reading you could
direct me to would be appreciated.
