How hide session id in retrivewap help me plz ?

Lol..I don't think so..The reason why i hide ses id is to prevent session hacking..I've done it so they couldn't get the ses id or they wouldn't know the things in session..the ses was just not included in the url but it's still inserted into the database table ibwf_ses..so, what's something new in the lavalair or wapdesire script i've modified was just i've hidden the ses id and just like what i've said..It's still inserted in the database..the script would still check if it exists in the database..There's nothing for me to be afraid..Then why don't hackers try to hack ses id system in my site..I'm not totally confident of the security of my site..Just try hackers! Lmao..Maybe you could hack me something in other backdoors..But let me prove first if session system in my site is not like what others are thinking it's not good and might easily get hacked..I wouldn't tell now more about my ses id and i would not share my script as hackers would have given informations about my session system..

.. my xhtml does work, i dont know why wml didn't

Read about csrf, u are obviously too narrow minded. Wot u did was cover ONE hole, so what about the fact that csrf dnt rely on grabbin sessions? Csrf dnt give 3 fuks wat ur sid is or whether its goin thru a database or is ip locked. Csrf is a whole new dimension. Think owt ov d box.

just add salt in session. Y0u can put a s0luti0n 4 stealing sid. Just d0 what facebook did. If you l0gin in other computer or browser you will be logout. Means 1 user only can use your session haha but i dont know what is the code for that haha lol

Why everytime i put $sid = $_SESSION["sid"]; an error appeared the error is undefined variable: _SESSION in index.php on line 2 that is the error i am using xampp application. .is it not good to use offline application? Do i need to use internet in edittng this function??

Plz help. . .! Why error is appearing?