For Programmers: Free Programming Magazines  


Home > Archive > PHP Programming > March 2008 > Re: Why are they more secure?









You are viewing an archived Text-only version of the thread. To view this thread in it's original format and/or if you want to reply to this thread please [click here]

 

Author Re: Why are they more secure?
Toby A Inkster

2008-03-31, 8:16 pm

Gordon wrote:

> The session_regenerate_id function in PHP mitigates this problem
> somewhat, it cause a user with a valid session ID to be assigned a
> different ID for every call.

And will probably end up logging visitors out if they have more than one
of your pages open simultaneously in a tabbed browser.

--
Toby A Inkster BSc (Hons) ARCS
[G of HTML/SQL/Perl/PHP/Python/Apache/Linux]
[OS: Linux 2.6.17.14-mm-desktop-9mdvsmp, up 5 days, 11:11.]

Cognition 0.1 Alpha 6
http://tobyinkster.co.uk/blog/2008/...gnition-alpha6/
Sponsored Links







Also available: Server administration forum archive | Web Design forum archive | Software forum archive | Hardware reviews archive

Copyright 2010 codecomments.com