Re: [Phpwebsite-developers] phpWhosOnline

SourceForge Headquarters 225 Broadway Suite 1600 San Diego, CA 92101 +1 (858) 422-6466

On Thu, Apr 26, 2001 at 12:09:35PM +0200, Alain Fontaine wrote:

> That's what I thought too, but I checked the doc first before I was about=
 to
> post the same message as you did... unfortunately, you DO need access to =
the
> configuration file, because you need to tell PHP not to use the normal
> 'file' session handlers, but your own 'user' session handlers. And that
> needs to be set in php.ini.

Damn! I knew I would expose myself to laughter one day :-) But that is
indeed bad news. I didn't think about that (having your own server
makes life easier...).

> As for ini_set() and so on, I suppose most PHP hosting companies would
> disable that function for security reasons.

Well, are there any stats regarding that? Any experience anyone? And
what about .htaccess? Some hosters might let you use that. And last
not least they could check, right?

And what about those who want to set up a multiple organisation (read
big) phpWSII installation? I would think they have access to some
decent hosting environment... It can be bad to avoid using better
techniques just for the sake of some "standard home user". After all:
What is our target audience? Didn't see that in the roadmap :-)
Honestly, who shall be using phpWSII when it is ready and what can we
expect them to have on their server? Just PHP4? Or even some power? Or
root privileges? This is something we should think about, I guess.

In the end: Wouldn't it be possible to use files for session data per
default and let the user choose (if possible) to use a DB instead, if
he wanted/needed the features that provides? User John Doe, with his
100 hits per month would do good _not_ to enable a whosonline display
(it would read 1 visitor most of the time), and when it becomes
interesting to know the number of visitors you probably have enough
power over your server to enable user session handlers. (See my post
about the roadmap for another example of user choice: mailing lists.)

Just my 2 cents,
Karsten
--=20
Why do we have to hide from the police, daddy?
Because we use emacs, son. They use vi.
-----------------------------
mailto:k.d...@tu... w=B3: http://www.k-fish.de/
gpg: http://www.k-fish.de/mykeys.gpg