phplib-users

[Giancarlo <gia...@na...>]

> I am so happy with  the session4 
> stuff, it seems to work and it is so much faster than with the MySQL 
> database!!!

the biggest limit of session4 is that it cannot have the equivalent of 
phplib's
mode=cookie
fallback_mode=cookie

because php.ini's 
session.use_cooki=1 
means 'use cookie if no SID in URL', same as phplib's 
mode=cookie
fallback_mode=get

that is, PHP has  no 'cookie-or-nothing' choice, which is the only one you 
should consider if you have a serious auth, perm etc, a la homebanking.

There is a patch for that, with a new php.ini's
session.use_only_cookie that you can also set in .htaccess or th script (I 
think),  or you have to wait for a future release that comprises it.

Gian