From ecd8376f36af4c600895785c90c0e035ba3dc687 Mon Sep 17 00:00:00 2001 From: foobar Date: Fri, 2 Dec 2005 18:42:41 +0000 Subject: - Changed "session.use_only_cookies" to be on by default. --- php.ini-dist | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) (limited to 'php.ini-dist') diff --git a/php.ini-dist b/php.ini-dist index de3c031e8d..eefaf9f22b 100644 --- a/php.ini-dist +++ b/php.ini-dist @@ -895,8 +895,8 @@ session.save_handler = files session.use_cookies = 1 ; This option enables administrators to make their users invulnerable to -; attacks which involve passing session ids in URLs; defaults to 0. -; session.use_only_cookies = 1 +; attacks which involve passing session ids in URLs; defaults to 1. +session.use_only_cookies = 1 ; Name of the session (used as cookie name). session.name = PHPSESSID -- cgit v1.2.1