- List new session.use_only_cookies option.

author: Markus Fischer <mfischer@php.net> 2002-06-16 06:05:23 +0000
committer: Markus Fischer <mfischer@php.net> 2002-06-16 06:05:23 +0000
commit: c0736d6096428069e710c5c7c1b6e7161ef2f464 (patch)
tree: 3b5d5466391264f9338562975378c919b3dada04 /php.ini-recommended
parent: c55ce8b07f2d1d82a1bb4bd7dabf84bfc3f22888 (diff)
download: php-git-c0736d6096428069e710c5c7c1b6e7161ef2f464.tar.gz
1 files changed, 3 insertions, 0 deletions
diff --git a/php.ini-recommended b/php.ini-recommended
index 13fdd46c65..b4fd4befb5 100644
--- a/php.ini-recommended
+++ b/php.ini-recommended
@@ -732,6 +732,9 @@ session.save_path = /tmp
 ; Whether to use cookies.
 session.use_cookies = 1
 
+; This option enables administrators to make their users invulnerable to 
+; attacks which involve passing session ids in URLs; defaults to 0.
+; session.use_only_cookies = 1
 
 ; Name of the session (used as cookie name).
 session.name = PHPSESSID
author	Markus Fischer <mfischer@php.net>	2002-06-16 06:05:23 +0000
committer	Markus Fischer <mfischer@php.net>	2002-06-16 06:05:23 +0000
commit	c0736d6096428069e710c5c7c1b6e7161ef2f464 (patch)
tree	3b5d5466391264f9338562975378c919b3dada04 /php.ini-recommended
parent	c55ce8b07f2d1d82a1bb4bd7dabf84bfc3f22888 (diff)
download	php-git-c0736d6096428069e710c5c7c1b6e7161ef2f464.tar.gz