ID: 47248 Updated by: scott...@php.net Reported By: tim987 at email dot com -Status: Open +Status: Bogus Bug Type: Feature/Change Request Operating System: Windows/Linux PHP Version: 5.3.0beta1 New Comment:
Non permanent cookies would infuriate people who don't use public computers if they needed to login every time. This is a stupid suggestion and is up to the application developers. Previous Comments: ------------------------------------------------------------------------ [2009-01-30 02:12:11] tim987 at email dot com Description: ------------ PHP shouldn't allow a cookie that doesn't expire when a web browser is closed. Alot of PHP sites are very insecure because they use cookies that don't expire at all. For example, YouTube,which uses PHP, doesn't expire cookies at all so if you sign into your YouTube account, close your browser,shut down your computer, then go back to YouTube, your account will still be logged in which is scary for people using public computers. So this is why this and all future versions of PHP should not allow cookies that do not expire when a web browser is closed. ------------------------------------------------------------------------ -- Edit this bug report at http://bugs.php.net/?id=47248&edit=1
