Re: [PHP] PHPSESSID sticks to every link after upgrate of Apache/PHP
Hi
You will probably need to make clean and rebuild php config and do a new
make against the new version of apache.
Just a guess
Tom
At 12:28 PM 5/04/01 +0900, Maxim Maletsky wrote:
Hello,
my co-worker has reinstalled Apache and PHP over the last night.
The Apache was upgraded to the new version while PHP was re-installed the
same.
PHP.ini was untouched.
Site uses sessions and, somehow, after this upgrade started carrying
PHPSESSID through HREF.
What should look for to bring the sessions using Cookies?
from PHP-INI:
NOTE : this was untouched.
[Session]
session.save_handler = files ; handler used to store/retrieve data
session.save_path = /tmp; argument passed to save_handler
; in the case of files, this is the
; path where data files are stored
session.use_cookies = 1 ; whether to use cookies
session.name = PHPSESSID ; name of the session
; is used as cookie name
session.auto_start= 0 ; initialize session on request startup
session.cookie_lifetime = 0 ; lifetime in seconds of cookie
; or if 0, until browser is restarted
session.cookie_path = / ; the path the cookie is valid for
session.cookie_domain = ; the domain the cookie is valid for
session.serialize_handler = php ; handler used to serialize data
; php is the standard serializer of PHP
session.gc_probability= 1 ; percentual probability that the
; 'garbage collection' process is
started
; on every session initialization
session.gc_maxlifetime= 1440; after this number of seconds, stored
; data will be seen as 'garbage' and
; cleaned up by the gc process
session.referer_check = ; check HTTP Referer to invalidate
; externally stored URLs containing ids
session.entropy_length= 0 ; how many bytes to read from the file
session.entropy_file = ; specified here to create the session
id
; session.entropy_length= 16
; session.entropy_file = /dev/urandom
session.cache_limiter = nocache ; set to {nocache,private,public} to
; determine HTTP caching aspects
session.cache_expire = 180 ; document expires after n minutes
session.use_trans_sid = 1 ; use transient sid support if enabled
; by compiling with --enable-trans-sid
=
Has upgrade of apache (modules, etc) anything to do with it?
I can't really give you any more details since my co-coworker is unreachable
right now, and this is kinda urgent.
Cheers,
Max.
Maxim Maletsky - [EMAIL PROTECTED] mailto:[EMAIL PROTECTED]
Webmaster, J-Door.com / J@pan Inc.
LINC Media, Inc.
TEL: 03-3499-2175 x 1271
FAX: 03-3499-3109
http://www.j-door.com http://www.j-door.com/
http://www.japaninc.net http://www.japaninc.net/
http://www.lincmedia.co.jp http://www.lincmedia.co.jp/
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
To contact the list administrators, e-mail: [EMAIL PROTECTED]
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
To contact the list administrators, e-mail: [EMAIL PROTECTED]
RE: [PHP] PHPSESSID sticks to every link after upgrate of Apache/PHP
In your php.ini, change the following line:
session.use_trans_sid = 1 ; use transient sid support if enabled
to
session.use_trans_sid = 0 ; use transient sid support if enabled
And see if that solves your problem. Also, check the change with phpinfo(),
and if nothing changed, look for a second evil twin of php.ini
-Ben
-Original Message-
From: trogers [mailto:[EMAIL PROTECTED]]
Sent: Sunday, April 08, 2001 6:59 PM
To: 'PHP General List. (E-mail)'
Subject: Re: [PHP] PHPSESSID sticks to every link after upgrate of
Apache/PHP
Hi
You will probably need to make clean and rebuild php config and do a new
make against the new version of apache.
Just a guess
Tom
At 12:28 PM 5/04/01 +0900, Maxim Maletsky wrote:
Hello,
my co-worker has reinstalled Apache and PHP over the last night.
The Apache was upgraded to the new version while PHP was re-installed the
same.
PHP.ini was untouched.
Site uses sessions and, somehow, after this upgrade started carrying
PHPSESSID through HREF.
What should look for to bring the sessions using Cookies?
from PHP-INI:
NOTE : this was untouched.
[Session]
session.save_handler = files ; handler used to store/retrieve data
session.save_path = /tmp; argument passed to save_handler
; in the case of files, this is the
; path where data files are stored
session.use_cookies = 1 ; whether to use cookies
session.name = PHPSESSID ; name of the session
; is used as cookie name
session.auto_start= 0 ; initialize session on request startup
session.cookie_lifetime = 0 ; lifetime in seconds of cookie
; or if 0, until browser is restarted
session.cookie_path = / ; the path the cookie is valid for
session.cookie_domain = ; the domain the cookie is valid for
session.serialize_handler = php ; handler used to serialize data
; php is the standard serializer of
PHP
session.gc_probability= 1 ; percentual probability that the
; 'garbage collection' process is
started
; on every session initialization
session.gc_maxlifetime= 1440; after this number of seconds, stored
; data will be seen as 'garbage' and
; cleaned up by the gc process
session.referer_check = ; check HTTP Referer to invalidate
; externally stored URLs containing
ids
session.entropy_length= 0 ; how many bytes to read from the file
session.entropy_file = ; specified here to create the session
id
; session.entropy_length= 16
; session.entropy_file = /dev/urandom
session.cache_limiter = nocache ; set to {nocache,private,public} to
; determine HTTP caching aspects
session.cache_expire = 180 ; document expires after n minutes
session.use_trans_sid = 1 ; use transient sid support if enabled
; by compiling with --enable-trans-sid
=
Has upgrade of apache (modules, etc) anything to do with it?
I can't really give you any more details since my co-coworker is
unreachable
right now, and this is kinda urgent.
Cheers,
Max.
Maxim Maletsky - [EMAIL PROTECTED] mailto:[EMAIL PROTECTED]
Webmaster, J-Door.com / J@pan Inc.
LINC Media, Inc.
TEL: 03-3499-2175 x 1271
FAX: 03-3499-3109
http://www.j-door.com http://www.j-door.com/
http://www.japaninc.net http://www.japaninc.net/
http://www.lincmedia.co.jp http://www.lincmedia.co.jp/
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
To contact the list administrators, e-mail: [EMAIL PROTECTED]
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
To contact the list administrators, e-mail: [EMAIL PROTECTED]
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
To contact the list administrators, e-mail: [EMAIL PROTECTED]
[PHP] PHPSESSID sticks to every link after upgrate of Apache/PHP
Hello,
my co-worker has reinstalled Apache and PHP over the last night.
The Apache was upgraded to the new version while PHP was re-installed the
same.
PHP.ini was untouched.
Site uses sessions and, somehow, after this upgrade started carrying
PHPSESSID through HREF.
What should look for to bring the sessions using Cookies?
from PHP-INI:
NOTE : this was untouched.
[Session]
session.save_handler = files ; handler used to store/retrieve data
session.save_path = /tmp; argument passed to save_handler
; in the case of files, this is the
; path where data files are stored
session.use_cookies = 1 ; whether to use cookies
session.name = PHPSESSID ; name of the session
; is used as cookie name
session.auto_start= 0 ; initialize session on request startup
session.cookie_lifetime = 0 ; lifetime in seconds of cookie
; or if 0, until browser is restarted
session.cookie_path = / ; the path the cookie is valid for
session.cookie_domain = ; the domain the cookie is valid for
session.serialize_handler = php ; handler used to serialize data
; php is the standard serializer of PHP
session.gc_probability= 1 ; percentual probability that the
; 'garbage collection' process is
started
; on every session initialization
session.gc_maxlifetime= 1440; after this number of seconds, stored
; data will be seen as 'garbage' and
; cleaned up by the gc process
session.referer_check = ; check HTTP Referer to invalidate
; externally stored URLs containing ids
session.entropy_length= 0 ; how many bytes to read from the file
session.entropy_file = ; specified here to create the session
id
; session.entropy_length= 16
; session.entropy_file = /dev/urandom
session.cache_limiter = nocache ; set to {nocache,private,public} to
; determine HTTP caching aspects
session.cache_expire = 180 ; document expires after n minutes
session.use_trans_sid = 1 ; use transient sid support if enabled
; by compiling with --enable-trans-sid
=
Has upgrade of apache (modules, etc) anything to do with it?
I can't really give you any more details since my co-coworker is unreachable
right now, and this is kinda urgent.
Cheers,
Max.
Maxim Maletsky - [EMAIL PROTECTED] mailto:[EMAIL PROTECTED]
Webmaster, J-Door.com / J@pan Inc.
LINC Media, Inc.
TEL: 03-3499-2175 x 1271
FAX: 03-3499-3109
http://www.j-door.com http://www.j-door.com/
http://www.japaninc.net http://www.japaninc.net/
http://www.lincmedia.co.jp http://www.lincmedia.co.jp/
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
To contact the list administrators, e-mail: [EMAIL PROTECTED]
Re: [PHP] PHPSESSID sticks to every link after upgrate of Apache/PHP
Maxim Maletsky wrote: Site uses sessions and, somehow, after this upgrade started carrying PHPSESSID through HREF. Sounds to me like php was compliled with the --enable-trans-sid option which does exactly that. Just a guess. Regards Joseph -- PHP General Mailing List (http://www.php.net/) To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] To contact the list administrators, e-mail: [EMAIL PROTECTED]
Re: [PHP] PHPSESSID sticks to every link after upgrate of Apache/PHP
Hm...what browser are you using to test the site?
By using the trans_id option I believe that tells PHP to append the sessid
into the url if the cookie is not being accepted.
Try turning it off and trying it, and you may need to comment out the
url.rewriter thing directly under that option.
Try having someone else test your site using a different browser. Try IE 5,
5.5, and the new version of Netscape. All with cookies enabled.
If your site still is appending to the url, then something else is wrong.
--
Plutarck
Should be working on something...
...but forgot what it was.
"Maxim Maletsky" [EMAIL PROTECTED] wrote in message
DC017B079D81D411998C009027B7112A015ED065@EXC-TYO-01">news:DC017B079D81D411998C009027B7112A015ED065@EXC-TYO-01...
Hello,
my co-worker has reinstalled Apache and PHP over the last night.
The Apache was upgraded to the new version while PHP was re-installed the
same.
PHP.ini was untouched.
Site uses sessions and, somehow, after this upgrade started carrying
PHPSESSID through HREF.
What should look for to bring the sessions using Cookies?
from PHP-INI:
NOTE : this was untouched.
[Session]
session.save_handler = files ; handler used to store/retrieve data
session.save_path = /tmp; argument passed to save_handler
; in the case of files, this is the
; path where data files are stored
session.use_cookies = 1 ; whether to use cookies
session.name = PHPSESSID ; name of the session
; is used as cookie name
session.auto_start= 0 ; initialize session on request
startup
session.cookie_lifetime = 0 ; lifetime in seconds of cookie
; or if 0, until browser is restarted
session.cookie_path = / ; the path the cookie is valid for
session.cookie_domain = ; the domain the cookie is valid for
session.serialize_handler = php ; handler used to serialize data
; php is the standard serializer of
PHP
session.gc_probability= 1 ; percentual probability that the
; 'garbage collection' process is
started
; on every session initialization
session.gc_maxlifetime= 1440; after this number of seconds, stored
; data will be seen as 'garbage' and
; cleaned up by the gc process
session.referer_check = ; check HTTP Referer to invalidate
; externally stored URLs containing
ids
session.entropy_length= 0 ; how many bytes to read from the file
session.entropy_file = ; specified here to create the session
id
; session.entropy_length= 16
; session.entropy_file = /dev/urandom
session.cache_limiter = nocache ; set to {nocache,private,public} to
; determine HTTP caching aspects
session.cache_expire = 180 ; document expires after n minutes
session.use_trans_sid = 1 ; use transient sid support if enabled
; by compiling with --enable-trans-sid
=
Has upgrade of apache (modules, etc) anything to do with it?
I can't really give you any more details since my co-coworker is
unreachable
right now, and this is kinda urgent.
Cheers,
Max.
Maxim Maletsky - [EMAIL PROTECTED] mailto:[EMAIL PROTECTED]
Webmaster, J-Door.com / J@pan Inc.
LINC Media, Inc.
TEL: 03-3499-2175 x 1271
FAX: 03-3499-3109
http://www.j-door.com http://www.j-door.com/
http://www.japaninc.net http://www.japaninc.net/
http://www.lincmedia.co.jp http://www.lincmedia.co.jp/
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
To contact the list administrators, e-mail: [EMAIL PROTECTED]
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
To contact the list administrators, e-mail: [EMAIL PROTECTED]
