I just hit the issue of a PHP program which used to run happily failing with an error at the PHP session_start() function. A spot of Googling (and the phpinfo() function) confirms that SUSE have disabled session support in
Which SUSE version do you use? ----- Original Message ----- From: "Derek Fountain" <dflists@iinet.net.au> To: <suse-security@suse.com> Sent: Monday, October 18, 2004 4:40 AM Subject: [suse-security] PHP sessions their
recent PHP builds. I found a thread on the issue on the SUSE-English list which quickly dissolved into a rant, but not before someone said it was a security thing. I found the same question and answer in other places, but couldn't find anything further.
So, two requests for information:
1) What can I read which tells me why PHP sessions are a security problem?
2) What can I read which tells me what I need to do to make my PHP program work again?
-- Check the headers for your unsubscription address For additional commands, e-mail: suse-security-help@suse.com Security-related bug reports go to security@suse.de, not here