From db8b4c67629334da8daad5ce28d51f8f644ef113 Mon Sep 17 00:00:00 2001
From: Sascha Schumann <sas@php.net>
Date: Thu, 16 Jan 2003 07:21:49 +0000
Subject: Add INI setting session.hash_bits_per_character which enables
 developers to choose how session ids are represented, regardless of the hash
 algorithm.

---
 php.ini-recommended | 14 +++++++++++---
 1 file changed, 11 insertions(+), 3 deletions(-)

(limited to 'php.ini-recommended')

diff --git a/php.ini-recommended b/php.ini-recommended
index 023618f307..0f69b6cfdb 100644
--- a/php.ini-recommended
+++ b/php.ini-recommended
@@ -892,9 +892,17 @@ session.cache_expire = 180
 session.use_trans_sid = 0
 
 ; Select a hash function
-; 0: MD5   (128 bits, 32 characters, alphabet [0-9a-f])
-; 1: SHA-1 (160 bits, 32 characters, alphabet [0-9a-v])
-session.hash_function = 1
+; 0: MD5   (128 bits)
+; 1: SHA-1 (160 bits)
+session.hash_function = 0
+
+; Define how many bits are stored in each character when converting
+; the binary hash data to something readable.
+;
+; 4 bits: 0-9, a-f
+; 5 bits: 0-9, a-v
+; 6 bits: 0-9, a-z, A-Z, "-", ","
+session.hash_bits_per_character = 5
 
 ; The URL rewriter will look for URLs in a defined set of HTML tags.
 ; form/fieldset are special; if you include them here, the rewriter will
-- 
cgit v1.2.1