Forum Moderators: coopster
However once in a while instead of usual "variableName¦s:5:"value";" pattern I find that in the data column there's a alphanumeric string. I'm clueless how such a thing happens. Any ideas?
I'm keeping sessions in a database
Ok, but I have to ask why you are doing this.
I find that in the data column there's a alphanumeric string.
Are you escaping the strings you feed to the database?
However a few items I picked up:
It adds security (data in a DB are more secured than in a flat file) I mean if someone breaks in your scripts and if your db conn is away from root the breaker should no be able to mod your dbIt will help if you need to load sharing
You have an easy access to session content from your db thus helping in debuggingThe above is a digest of what I once read while enquiring on the topic
But there is more…
It adds security (data in a DB are more secured than in a flat file)
Snort! You are much more likely to be exploited by SQL injection than having someone able to remotely read the session files.
It will help if you need to load sharing
So will NFS (or other network file sharing method).
What it mostly gives you is complexity. If adding complexity doesn't get you something you need, why do it?
You are much more likely to be exploited by SQL injection than having someone able to remotely read the session files.
This is not true for shared hosts; it's actually VERY simple on a shared host to read the session files on the file system with a simple script since all of the session files are kept in the same location for everyone. On a shared host, if you want any real sense of security, you should be storing your session information in a database.
What it mostly gives you is complexity. If adding complexity doesn't get you something you need, why do it?
As for a random string showing up in your DB, it might have something to do with your code somewhere. Maybe for certain cases you didn't account for? Not sure, it's going to take some investigation to get to the bottom of it on your part.
