Should I use session.use_trans_sid? Please post quick vote.

PHP programming forum. Ask questions or help people concerning PHP code. Don't understand a function? Need help implementing a class? Don't understand a class? Here is where to ask. Remember to do your homework!

Moderator: General Moderators

Post Reply

Should I use session.use_trans_sid?

Poll ended at Fri May 09, 2008 8:25 pm

(1) NO - Anyone who stops cookies will suffer on my site as they will not be able to log in etc.
3
75%
(2) YES - Use session.use_trans_sid but be ready for security breaches.
1
25%
(3) Use another method (please explain)
0
No votes
 
Total votes: 4

johnsmith153
Forum Newbie
Posts: 10
Joined: Thu Feb 14, 2008 6:53 am

Should I use session.use_trans_sid? Please post quick vote.

Post by johnsmith153 »

Should I use session.use_trans_sid?

Please vote. Any comments would be great also.

session.use_trans_sid sends the sessionid in the url if cookies are not enabled on the browser.

If session.use_trans_sid is set to off, as far as I am aware people who have disabled cookies will not be able to log in on my site. Log in is very important to my site and 98% of users will be loggin in.
User avatar
flying_circus
Forum Regular
Posts: 732
Joined: Wed Mar 05, 2008 10:23 pm
Location: Sunriver, OR

Re: Should I use session.use_trans_sid? Please post quick vote.

Post by flying_circus »

If sessions and security are important, why not run a check to see if the user has cookies enabled? If cookies are not enabled, redirect to an error page with an explanation of why it is vital that your site uses cookies to protect the users identity? Once the user has enabled cookies they should be able to proceed to the secure parts of your site.

I am actually curious about what other people have to say, but I believe for the most part that the greater majority of people have cookies enabled and it shouldnt be much of a problem.

I'm voting 1.
Post Reply