|
|
Posted by Mickey on 11/17/06 19:00
Hi,
I just have a couple of questions regarding sessions. I read the php
manual but I just wasn't clear on a couple of things.
I am using the following to control my sessions:
...
ini_set('session.save_path',"./sessions/sess/");
ini_set("session.gc_maxlifetime","300");
ini_set('session.gc_probability',1);
ini_set('session.gc_divisor',1);
...
I want the garbage collector to kill a users session the second a user
closes their browser (or as quick as possible). Am I doing correct
above ^ to achieve this?
Also, are there any security issues with having the 'session.save_path'
set to a directory like above or should I perhaps have it set to
somewhere like "../../sessions/sess/"?
Thanks in advance!
[Back to original message]
|