Hi Andrey, On Tue, Mar 3, 2015 at 7:40 PM, Andrey Andreev <[email protected]> wrote:
> Why do you want to change it at all? If you don't want the data to get > immediately deleted, pass FALSE to the function and let the GC erase > it later. > It's not precise at all. Old session data that must be deleted could exists as long as it is accessed. i.e. Stolen session could exists as long as attacker accesses it. Timestamping is the method. It's the same as I proposed before. Regards, -- Yasuo Ohgaki [email protected]
