Expire sessions after a period of time

glacials / cins548

Our group project for CINS 548

1 stars 0 forks source link

Expire sessions after a period of time #1

Open glacials opened 11 years ago

glacials commented 11 years ago

When we get our server we should set the PHP config variable session.cookie_lifetime in php.ini to some amount of time we think sessions should expire after.

gscory commented 11 years ago

http://www.phpfreaks.com/tutorial/php-security

I found the link above has some good tips on expiring sessions and preventing other types of attacks.

On Tuesday, October 1, 2013, Ben Carlsson wrote:

When we get our server we should set the PHP variable session.cookie_lifetime in php.ini to some amount of time we think sessions should expire after.

— Reply to this email directly or view it on GitHubhttps://github.com/skoh-fley/cins548/issues/1 .