Page 1 of 1

Advanced PHP5 sessions

Posted: Wed Oct 26, 2005 3:54 am
by dandri
I noticed that when 'session.hash_function' configuration option of php.ini is set to 1 (MD5), the session identifier is a 26-digit hexadecimal string and not 32. Also when it is set to 2 (SHA1), the session identifier is a 32-digit hexadecimal string and not 40.

Posted: Wed Oct 26, 2005 8:28 am
by feyd
Session Handling wrote:session.hash_function integer

session.hash_function allows you to specify the hash algorithm used to generate the session IDs. '0' means MD5 (128 bits) and '1' means SHA-1 (160 bits).