How to use Session variable to improve security of URL with querystrnigs
To avoid further SQL injection attacks we are taking various steps to secur our code for forms and all user-generated input.
For ASP pages called by querystring (eg test.asp?id=4) we would like to use a session value to hold a changing application key, so that a hacker cannot adjust and submit a URL. But we do not know how to do this (ie generate changing application key, use session variable). Grateful for simple solution that we can implement using Dreamweaver. We use MS SQL.