Comments on: PHP sessions on shared hosting – Hack It! #3 http://www.supernifty.com.au/blog/2008/04/19/php-sessions-on-shared-hosting-hack-3/ that is also super Sun, 29 Jan 2012 02:50:15 +0000 http://wordpress.org/?v=2.9.2 hourly 1 By: peter http://www.supernifty.com.au/blog/2008/04/19/php-sessions-on-shared-hosting-hack-3/comment-page-1/#comment-4581 peter Sun, 08 Feb 2009 01:16:11 +0000 http://www.supernifty.com.au/blog/2008/04/19/php-sessions-on-shared-hosting-hack-3/#comment-4581 Hey Harry, If at all possible, don't put your sessions under your www directory - as you said, this exposes them to the outside world. Not good! If you must put your session directory under www, definitely password protect it with htaccess. There's probably even a "no access" directive you can put in your .htaccess file. Hey Harry,

If at all possible, don’t put your sessions under your www directory – as you said, this exposes them to the outside world. Not good!

If you must put your session directory under www, definitely password protect it with htaccess. There’s probably even a “no access” directive you can put in your .htaccess file.

]]> By: harry http://www.supernifty.com.au/blog/2008/04/19/php-sessions-on-shared-hosting-hack-3/comment-page-1/#comment-4577 harry Fri, 23 Jan 2009 14:50:05 +0000 http://www.supernifty.com.au/blog/2008/04/19/php-sessions-on-shared-hosting-hack-3/#comment-4577 sweet, after reading for hours, this helps clear up a lot. my only question, with this hack, i am now moving my session files to a www/ folder. i can password protect it i guess, but it is now open to public hacking. do you know what safeguards i can use in this case? sweet, after reading for hours, this helps clear up a lot.

my only question, with this hack, i am now moving my session files to a www/ folder. i can password protect it i guess, but it is now open to public hacking.

do you know what safeguards i can use in this case?

]]>