Y
Hacker News
new
|
ask
|
show
|
jobs
by
MichaelApproved
4677 days ago
Exactly. As little as possible should be passing through the querystring. Put in the minimum amount in the QS and look the rest up in the DB. If possible, the QS should be signed for an extra layer of protection.