[horde] Can't start a second horde session?
Kevin Konowalec
kevin at ualberta.net
Fri Aug 4 09:51:03 PDT 2006
Thanks Chuck!
So how serious are the security implications of doing this? Is this
something I should be recommending we don't do?
On Aug 4, 2006, at 10:18 AM, Chuck Hagenbuch wrote:
> Quoting Kevin Konowalec <kevin at ualberta.net>:
>
>> However, turning off session.use_only_cookies doesn't seem do do
>> anything. I set that parameter to false, then dump all my
>> cookies and browser cache and restart my browser and even the
>> webserver. The behavior is the same. So I open up my cookies
>> list and it's pretty much the same as it was when
>> use_only_cookies is set to true.
>
> You'd have to block cookies also, or turn off session cookies in
> PHP. Misconfiguring the cookie_path might be one easy way to do it.
>
> -chuck
>
> --
> "we are plastered to the windshield of the bus that is time." - Chris
>
More information about the horde
mailing list