Text only | Text with Images

New Hampshire Underground

New Hampshire Underground => Forum Issues => Topic started by: Dave Ridley on July 27, 2006, 05:51 PM NHFT

Title: what is a php session ID?
Post by: Dave Ridley on July 27, 2006, 05:51 PM NHFT
one of our playful friends over at DFNH says he was able to log into my account because I "posted a url with a phpsession ID."  what is that, how is it posted and how does one avoid posting a url with it?

thanks for the heads up whoever you were. 
Title: Re: what is a php session ID?
Post by: aworldnervelink on July 27, 2006, 05:58 PM NHFT
All of the things that appears after the '?' in the URL are parameters to the web application. A session ID is a unique code that keeps track of you while you are logged in - it will expire after a certain period of time. Each app is going to work differently, but you want to watch out for the stuff after the question mark.
Title: Re: what is a php session ID?
Post by: aries on July 27, 2006, 08:36 PM NHFT
In PHP when sessions are enabled any POST or GET data is cached to your session which is assigned a unique ID by the server and that way things like your login session (so you don't get logged out after closing or navigating away) can be stored in cookies, and the session stays open with that ID.

I think, it's been a while since I've done much PHP programming and even longer since I used sessions.
Title: Re: what is a php session ID?
Post by: CNHT on July 28, 2006, 10:04 AM NHFT
Quote from: DadaOrwell on July 27, 2006, 05:51 PM NHFT
one of our playful friends over at DFNH says he was able to log into my account because I "posted a url with a phpsession ID."  what is that, how is it posted and how does one avoid posting a url with it?

thanks for the heads up whoever you were. 

What I want to know is why are you conversing with them in the first place?
Just be sure you log out first before you post a link to a thread.
Title: Re: what is a php session ID?
Post by: d_goddard on July 28, 2006, 01:33 PM NHFT
Quote from: CNHT on July 28, 2006, 10:04 AM NHFT
Quote from: DadaOrwell on July 27, 2006, 05:51 PM NHFT
one of our playful friends over at DFNH
What I want to know is why are you conversing with them in the first place?
DFNH are fine people. Misguided, socialist, and unaware of the fact that they propound the use of violence to acheive their ends... but, they may well be educatable. ;)
Title: Re: what is a php session ID?
Post by: CNHT on July 28, 2006, 01:48 PM NHFT
Quote from: d_goddard on July 28, 2006, 01:33 PM NHFT
Quote from: CNHT on July 28, 2006, 10:04 AM NHFT
Quote from: DadaOrwell on July 27, 2006, 05:51 PM NHFT
one of our playful friends over at DFNH
What I want to know is why are you conversing with them in the first place?
DFNH are fine people. Misguided, socialist, and unaware of the fact that they propound the use of violence to acheive their ends... but, they may well be educatable. ;)


LOL, well, at least I still have all my fingers.....
Text only | Text with Images