Ravens PHP Scripts: Forums
 

 
  Forum Index  •  Forum FAQ  •  Search  •  Memberlist  •  Usergroups  •  Profile  •  Log in to check your private messages  •  Log in

PHPSESSID gets automatically added to original HTML code
 View next topic
View previous topic
Post new topic   Reply to topic    Ravens PHP Scripts And Web Hosting Forum Index -> General/Other Stuff
Author Message
NoFantasy
Worker
Worker



Joined: Apr 26, 2005
Posts: 114
PostPosted: Tue Dec 05, 2006 10:58 am Reply with quote
Well, this is so weird i had no clue where to post it, i have no clue whatsoever what is causing the following to happen.

Traditionally, i use Nuke 7.6 with latest chatserv patches (currently 3.3), NukeSentinel and ModRewrite to rewrite links (currently TegoNuke, but i checked the old NextGen tap aswell to see if TegoNuke was causing this...same thing happened)

Just today i started working on a new template for one of my pages and used w3.org's HTML validator to check up on some stuff. Big surprise! I noticed every single link had the infamous phpsessid-extention, like <a href="forums.html?PHPSESSID=96f51bbeabf61e04f3b4d403bac49fb6">

Browsing a bit further in the source code i found that every form was extended with a hidden input area like
<input type="hidden" name="PHPSESSID" value="96f51bbeabf61e04f3b4d403bac49fb6" />

Now, where on earth do they come from? I certainly didn't put them in the code, neither do i want them in there.

For the fun of it, i disabled accepting cookies in my browser. Same result as the html validator... without cookies, these codes are automatically added to the HTML code.

Ok, so this must be a bug, or...? Where do i start looking? Could it be version of PHP on the server or something my web server host activated/deactivated?
 
View user's profile Send private message
NoFantasy
PostPosted: Tue Dec 05, 2006 11:39 am Reply with quote
oh, nevermind...i found it by myself, just my brain temporarily out of order...
It seemes my web host made some changes to the server config, the answer was to put
Code:
php_value session.use_only_cookies 1


php_value session.use_trans_sid 0

into the .htaccess

I hope this isn't a bad thing to do?
 
djmaze
Subject Matter Expert



Joined: May 15, 2004
Posts: 727
Location: http://tinyurl.com/5z8dmv
PostPosted: Tue Dec 05, 2006 1:24 pm Reply with quote
I always hate it when a webhost thinks they're smart and should think for you.
Why the hell start a file based session if i don't use it anyway?

If i realy want a session i would just call session_start() in my own way (mostly DB based instead of file).

Just put the following in your .htaccess
Code:
php_value session.auto_start 0


If that fails then put in your php file:
Code:
session_destroy(); // stupid host
[ Only registered users can see links on this board! Get registered or login! ]

_________________
$ mount /dev/spoon /eat/fun auto,overclock 0 1
ERROR: there is no spoon [ Only registered users can see links on this board! Get registered or login! ] 
View user's profile Send private message Visit poster's website
montego
Site Admin



Joined: Aug 29, 2004
Posts: 9457
Location: Arizona
PostPosted: Tue Dec 05, 2006 8:12 pm Reply with quote
NoFantasy, most excellent advice! Thanks.

_________________
Where Do YOU Stand?
HTML Newsletter::ShortLinks::Mailer::Downloads and more... 
View user's profile Send private message Visit poster's website
Display posts from previous:       
Post new topic   Reply to topic    Ravens PHP Scripts And Web Hosting Forum Index -> General/Other Stuff


 Jump to:   




View next topic
View previous topic
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You can attach files in this forum
You can download files in this forum


Powered by phpBB © 2001-2007 phpBB Group
All times are GMT - 6 Hours
 
Forums ©