Rasmus Lerdorf wrote: > > Sure it can. I ran some test and it can't. If I run the same tests without using SSL there is no problem. But if I go from an SSL to a non-SSL connection the session variable stays registered but it loses it value somehow ...
> If the machine name is different make sure you set your > session.cookie_domain to something like .domain.com Same machine . . . > As long as you propogate the session > id somehow to the script, when session_start() is called in that script it > will pick up the session data. > Do watch out for all the security issues involved in sending session ids > over a non-encrypted link though. Ouch. I never thought of that . . . Dont' site like hotmail and amazon use session ID over non-encrypted links though? Using SSL for my entiresite would sure make it slow . . . Jc -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
