Quote:
Originally Posted by GrouchyAdmin
I think 3 days is pretty good; 7 days is incredibly generous.
I do have a personal feeling, though, about the cookie being forced from the last update: If somebody went to a site, surfed to another site, and clicked through, and lost the original cookie because it was destroyed, well, I don't know. That seems to have a lot of potential for spam targets to monopolize the whole program.. or is that the point?
|
We use a double system using 1 a cookie and 2 an encoded string based on
ip and some other surfer variables which is stored server side. We compare
these 2 to prevent, detect and report malicious cookie manipulations
like for example zango does.....so if the 2 don't match up the server stored
entry is being used for tracking and we're being alerted for possible fraud.
