Take a look at session_id, you can use it to get or set the session id.
Using some of my random generation functions I juse 72 to 96 character session ids for my more secure PHP applications. Remember if you want it to remain secure you need to pass it through SSL, longer keys do no good if someone is packet sniffing.
Jason
Henrik Hudson wrote:
Hey List-
I'm trying to figure out how to make the PHPSESSID cookie be longer then 32 characters?
One can set the entropy file and entropy length, but if my understanding of entropy is correct then that just helps randomize the 32 chars and not not actually make a string that much longer or shorter.
Can't seem to find anything in the archives or Google.
Then again, is a 32-length string sufficient for protecting a browser session length of "session"?
Thanks.
Henrik
-- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
