Page 1 of 1

use_trand_sid

Posted: Tue Apr 13, 2004 9:15 pm
by tim
i'm sick of it auto appending the SID to urls and i am sick of typing out full paths to URLS within my site to keep them from doing so

SO - I dont own the server so I guess I cannot get to the php.ini, is there ANY other way to prevent that?

Google hit me with nothing good =[

Posted: Tue Apr 13, 2004 9:21 pm
by tim
man this is twice already... searched n searched and posted the question, then I found the solution.

.htaccess I added:
php_flag session.use_trans_sid off

Is there any downfalls/security issues by doing this?

I'm aware that if the user has cookies disabled issues the session wont pass... but anything else?

Posted: Tue Apr 13, 2004 9:30 pm
by John Cartwright
No if anything it makes security a little better.. not much of a difference tho.

Posted: Tue Apr 13, 2004 9:32 pm
by tim
thanks

just easing my mind :P :P