By using this site, you agree to our updated Privacy Policy and our Terms of Use. Manage your Cookies Settings.
429,613 Members | 1,890 Online
Bytes IT Community
+ Ask a Question
Need help? Post your question and get tips & solutions from a community of 429,613 IT Pros & Developers. It's quick & easy.

SessionID generation entropy?

P: n/a
Ga
Hi,

I've got a total-newbie question: I'm playing with php session handling;
I've written a simple login/logout script, modified from a tutorial found
*googling* around, which prints out $PHPSESSID after user logs in.

Well...I obtain the same SID for every username/password pair (one SID for
each pair), while I expected different SID for every instance.

My php.ini looks like that:

session.entropy_lenght = 16
session.entropy_file = /dev/random

phpinfo() tells me these settings are effective and cat /dev/random shows
me something which actually seems random :)

I'm using php 4.1.2 as an Apache module on a Linux Debian box (testing
release, kernel 2.4.22).

What do I miss?

G.
Jul 17 '05 #1
Share this question for a faster answer!
Share on Google+

This discussion thread is closed

Replies have been disabled for this discussion.