About Session_regenerate_id()

Ask about general coding issues or problems here.

Moderators: macek, egami, gesf

New php-forum User
New php-forum User
Posts: 1
Joined: Fri Sep 14, 2012 5:49 am

About Session_regenerate_id()

Postby Terrifictary » Fri Sep 14, 2012 7:01 am

Why is it always recommended that session_regenerate_id() should be used before the user's session is created.
As per my perception, session_regenerate_id() should be used once the user session id is created (when the user is logged in), and we need to re-generate it so as to mitigate the session fixation attack by the hacker.
Please suggest!!

Return to “PHP coding => General”

Who is online

Users browsing this forum: Google [Bot] and 5 guests