Jordi Canals wrote: > the ISP changed a param in the PHP.INI, and they changed > session.use_trans_sid setting it to 1. [...] > Now I should talk to the provider to not set this parameter to ON by > default, because the security risk on it (As stated on the manuals).
If they allow you to use .htaccess files, you can create one at the root of your application with the following: php_flag session.use_trans_sid off -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
