Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

PHP $_SESSION is server side or local?

Tags:

php

session

As I understand it a session is stored on the server side only. User id (or session id) for the session is stored in a cookie or url. So, a user, even if he or she is a super hacker, cannot locally change any $_SESSION variables that I use on my site except the session id or the user id?

like image 382
JohnA Avatar asked Dec 28 '11 00:12

JohnA

1 Answers

In most setups, the session's data is stored on the server and its identifier is stored in a cookie. If you haven't played around with settings or custom session handlers, this will be how it is for you.

like image 161
alex Avatar answered Sep 20 '22 15:09

alex
Sign in to Comment

Related questions

Function pointer to static class member?
is there any php redis client support persistent connection?
Extended placeholders for SQL, e.g. WHERE id IN (??)
In MySQL, is it faster to delete and then insert or is it faster to update existing rows?
Decompress string in c# which were compressed by php's gzcompress()
Best way to detect bot from user agent?
Is this PHP redirect insecure?
Xdebug hiding dump information?
Convert URL to file system path
Hide Database Login Information in PHP Code
Communication between PHP and Python
PHPExcel will not export to CSV
How to unit test MVC classes?
__call equivalent for public methods
Insert sql query in loop a good practice or bad?
Natural Language Processing in PHP
How to hide some phing targets from xml
Deploying New Relic on Heroku Cedar (PHP)
Interpret escape characters in single quoted string
invalid mysql query on insert

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!