[imp] Very alarming/strange login problems - user logs in
tosomeone else's session
lst_hoe at kwsoft.de
lst_hoe at kwsoft.de
Wed Jan 29 10:55:14 PST 2003
Zitat von Eric Rostetter <eric.rostetter at physics.utexas.edu>:
> > My php.ini settings for sessions are:
> [...]
> > session.entropy_length = 0
> > session.entropy_file =
>
> This *might* be your problem.
>
> > ;session.entropy_length = 16
> > ;session.entropy_file = /dev/urandom
>
> Normally this is the solution. Maybe even something bigger than 16 for a
> site your size. But, solaris 8 doesn't have a /dev/urandom. So you need
> to find another source of entropy. Either install an obscure Solaris patch
> that will give you a /dev/random and I think a /dev/urandom, or install a
> third party package to get a /dev/random, or come up with another entropy
> source to use (which will probably lack performance).
>
> Once you have a random source, change the above settings, and see if that
> fixes it.
Is this documentet in FAQ or somewhere?
I ask because the settings seam to be the default for php.ini and it would be
nice to have a hint what to change before the user sessions are mixed up.
I run IMP on Linux and i guess i can simply uncoment the /dev/urandom settings?
Thanxs
Andreas
More information about the imp
mailing list