hi

i've got a database that uses the URL to pass a parameter, the record ID. This seems susceptible to hacking and I'd like to encrypt that parameter so that its not usefully displayed.

starting URL: www.abc.com/results_details.php?video_ID=2

desired URL: http://www.abc.com/results_details.p...48r9wreofasohf

or something like it, however its saved encrypted.

would one way to do this would be to take the current ID and encrypt it and store it in a new field? then i'd rewrite the results page to pass the new encrypted ID as the parameter, which would be of little value to a hacker. redoing the results page is no problem.

but since each starting ID will be different, it seems a difficult task to write mysql script to update each record with a record-specific encoded ID.

any suggestions would be greatly appreciated. thanks.

mike

what you do is don't bother encrypting at all. you put a password system into place and unless the user is logged in they can't see any of the video pages.

thanks for the reply.

but i want to keep the website 'open' so that it get maximal use.