ID: 36279 Updated by: [EMAIL PROTECTED] Reported By: bruce at web-graphique dot com -Status: Open +Status: Closed Bug Type: Documentation problem Operating System: windows xp PHP Version: Irrelevant New Comment:
This bug has been fixed in the documentation's XML sources. Since the online and downloadable versions of the documentation need some time to get updated, we would like to ask you to be a bit patient. Thank you for the report, and for helping us make our documentation better. Previous Comments: ------------------------------------------------------------------------ [2006-02-04 02:04:51] bruce at web-graphique dot com Description: ------------ In the manual, in the section titled "CXXXVII. Session Handling Functions", (http://us2.php.net/manual/en/ref.session.php), Table 1 says that the default for session.use_only_cookies is "1". However, later on the page it says that the default for session.use_only_cookies is 0: "session.use_only_cookies specifies whether the module will only use cookies to store the session id on the client side. Defaults to 0 (disabled, for backward compatibility). Enabling this setting prevents attacks involved passing session ids in URLs. This setting was added in PHP 4.3.0." ------------------------------------------------------------------------ -- Edit this bug report at http://bugs.php.net/?id=36279&edit=1
