Posted by apathetic on 10/12/06 12:14

Chenky wrote:
> The URL then changes to ...secure.php?PHPSESSID=94fhq439fqqh9f-qh9-q2h
> or something similar.

This is controlled by a setting in php.ini:

session.use_cookies = 1

If session cookies are enabled, you shouldn't get the session ID
appended to the query string. It might still use the query string if
the user has cookies disabled, however.

Tim

[Back to original message]