Hi,
This is what I am thinking to do. Do you think this approach is useful?
Thanks
index.php
1.Get user's ip
2.Get session id
3.Combine them together and do SHA1 it
4.Store result in a $_SESSION["secret"]
login.php
1.Get user's ip
2.Get session id
3.Combine them together and do SHA1 it
4.Compare result with $_SESSION["secret"]
5.Echo Valid or Invalid