Quote:
Originally Posted by ServerGenius
We use a double system using 1 a cookie and 2 an encoded string based on
ip and some other surfer variables which is stored server side. We compare
these 2 to prevent, detect and report malicious cookie manipulations
like for example zango does.....so if the 2 don't match up the server stored
entry is being used for tracking and we're being alerted for possible fraud.
 |
Aight, that's secure enough!
Quote:
Originally Posted by fuzebox
The idea is if the surfer didn't sign up from the first time he clicked a link, but does sign up the second time, that the second person he clicked through is the one who convinced him.
|
Agreed, but at the same time, this is easily abused, if you don't have a system as above. Blindly overwriting cookies based on referral code is bad; that's the only thing I'm saying.