Published August 25th, 2004 by Jim O'Halloran
Improving PHP Session Security
Chris Shiflett has posted an excellent article on improving the security of PHP sessions, in order to prevent Session Fixation or Session Hijacking attacks.
It is a common misconception that PHP provides a certain level of security with its native session management features. On the contrary, PHP simply provides a convenient mechanism. It is up to the developer to provide the complete solution, and as you will see, there is no one solution that is best for everyone.
Really useful stuff!
awal Says
i like to know abt session
Dec 1st, 2004 at 12:02 am