From ecd8376f36af4c600895785c90c0e035ba3dc687 Mon Sep 17 00:00:00 2001 From: foobar Date: Fri, 2 Dec 2005 18:42:41 +0000 Subject: - Changed "session.use_only_cookies" to be on by default. --- php.ini-recommended | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) (limited to 'php.ini-recommended') diff --git a/php.ini-recommended b/php.ini-recommended index ba1ce7f38e..cb4d0c1938 100644 --- a/php.ini-recommended +++ b/php.ini-recommended @@ -952,8 +952,8 @@ session.save_handler = files session.use_cookies = 1 ; This option enables administrators to make their users invulnerable to -; attacks which involve passing session ids in URLs; defaults to 0. -; session.use_only_cookies = 1 +; attacks which involve passing session ids in URLs; defaults to 1. +session.use_only_cookies = 1 ; Name of the session (used as cookie name). session.name = PHPSESSID -- cgit v1.2.1