http://itknowledgeexchange.techtarget.com/itanswers/universal-login-using-php/ Thu, 20 Jun 2013 11:12:44 +0000 hourly 1 http://itknowledgeexchange.techtarget.com/itanswers/universal-login-using-php/#comment-53857 ysrd Wed, 11 Jun 2008 00:53:47 +0000 #comment-53857 IF the two sites are on the same domain (www.test.com and yyy.test.com) you can usae a domain cookie.
As stated by the previous poster it would be a security risk unless you are on an intranet only.
You are better off using some other type of single sign on like LDAP or SAML. I suggest looking at the wikipedia article on single sign on, also there are good articles at the php home site and also at searchsecurity.techtarget.com

]]> http://itknowledgeexchange.techtarget.com/itanswers/universal-login-using-php/#comment-53351 labnuke99 Thu, 22 May 2008 12:54:37 +0000 #comment-53351 Cross-site cookie use is a security issue. You want to likely secure the cookie credentials with some type of encryption or hashing to ensure the identity being offered by the cookie is the actual user’s identity. It would be easy to steal someone’s identity if the cookie is easily read and used.

]]>