ID: 34542
Updated by: [EMAIL PROTECTED]
Reported By: marcus dot uy at virtualthinking dot com
-Status: Open
+Status: Feedback
Bug Type: Session related
Operating System: WinXP Pro
PHP Version: 5.1.0RC4, 5.2.0
New Comment:
First of all, please remove/disable mod_security.
Previous Comments:
------------------------------------------------------------------------
[2006-11-29 01:19:02] marcus dot uy at virtualthinking dot com
Dev/Tester. Please tell us what your setup is. Mine is as follows:
XPPro SP2, Apache 2.2.3, mod_security 2.0.4, PHP5.2.0
Settings as per recommended for performance.
Sessions configured to use URL, NOT cookies.
Sessions are being stored in C:\temp\sessiondata
When register_long_arrays is set to "off", Session data is created in
the script on first execute (print_r($_SESSION), dumps correctly), but
not saved to session file (e.g. sess_34r234r234r234r234r234, is
zero-length)
When register_long_arrays is set to "on", Session data is created in
the script on first execute (print_r($_SESSION), dumps correctly), and
is saved to session file (e.g. sess_34r234r234r234r234r234, is
non-zero-length)
The code does not use *any* HTTP_*_VARS... anywhere. Only $_ENV,
$_GET, $_POST, and $_SESSION. $_COOKIES is *not* used anywhere.
------------------------------------------------------------------------
[2006-11-28 22:48:18] [EMAIL PROTECTED]
Cannot reproduce, doesn't matter what is the value of
register_long_arrays. Please make sure you don't have any firewalls or
zend_extension's which might affect it.
------------------------------------------------------------------------
[2006-11-28 22:35:54] marcus dot uy at virtualthinking dot com
This bug is still there in 5.2.0.
BTW My environment does not use session cookies. I use the session
passed via URL. The reason is that my code overcomes the problems
associated with URL hijacking in-code, rather than depending on session
cookies that could also get hijacked.
The error stands.
I swear that it is real.
And, frankly, there seems to be many, many scripts and users that are
reporting similar session issues. I don't think that we could all be
wrong.
------------------------------------------------------------------------
[2005-12-11 14:47:31] [EMAIL PROTECTED]
This still doesn't happen.
------------------------------------------------------------------------
[2005-12-11 08:32:37] marcus dot uy at virtualthinking dot com
There have been test cases posted for this bug. Please review.
------------------------------------------------------------------------
The remainder of the comments for this report are too long. To view
the rest of the comments, please view the bug report online at
http://bugs.php.net/34542
--
Edit this bug report at http://bugs.php.net/?id=34542&edit=1
