On Thu, 11 Oct 2001, Tatsuhiko Miyagawa wrote: > Here is Apache::Session::Generate::* variants, which especially > uses Apache standard C-modules. > > Apache::Session::Generate::ModUniqueId > http://bulknews.net/lib/archives/Apache-Session-Generate-ModUniqueId-0.01.tar.gz > http://bulknews.net/lib/archives/Apache-Session-Generate-ModUniqueId-0.01.html > > uses mod_unique_id for session id.
Cool. > Apache::Session::Generate::ModUsertrack > http://bulknews.net/lib/archives/Apache-Session-Generate-ModUsertrack-0.01.tar.gz > http://bulknews.net/lib/archives/Apache-Session-Generate-ModUsertrack-0.01.html > > uses mod_usertrack's cookie for session id. Don't do that! mod_usertrack is not meant to be used for secure session ids. - ask -- ask bjoern hansen, http://ask.netcetera.dk/ !try; do(); more than a billion impressions per week, http://valueclick.com