35. To delete a cookie, you a. delete the COOKIE variable b. use the delete cookie function c. use the remove cookie function d. set the cookie's value to an empty string and its expiration date to a time in the past 36. When you use session tracking, each HTTP request includes a. a URL that stores the session ID b. a cookie that stores the session ID c. a cookie that stores the session data d. a cookie that stores the session ID and the session data 37. The _SERVER array contains data that can be used to a. determine whether the data has been encrypted b. determine the SSL strength c. redirect a page to a secure connection d. forward a page to a secure connection 38. When you use form-based authentication a. the username and password are automatically encrypted and decrypted b. the programmer writes the code for the authentication process c. the browser automatically displays a dialog box for the username and password d. the username and password have to be sent for every protected page 39When you use form-based authentication, you need to inelude two files at the top of each protected page. The first gets a secure connection, and the second a. asks for the username and password b. tests whether the $_SESSION array indicates that the user has been c. compare s the password in the $_SESSION array with the password in d. decrypts the username and password that's in the database validated the database 40. You usually don't need to decrypt passwords, because a. passwords aren't normally encrypted b. the shal function doesn't provide for decryption c. form-based authentication doesn't require encryption d. you can compare a user's password with a database password in encrypted form