Different browsers session_id the same possibility????
What I always knew was that session_id was absolutely the only one.
But when the session of a two-level domain name is shared, a problem is found: when the user first accesses, the session_id is saved to the Cookie,cookie validity period set to one day, and then the user exits. After 30 minutes, the session of the server is destroyed, and at this time the user carries the session_id access stored in the cookie. On the server side, for the two level domain name sharing session_id, made a judgment: as long as there is $_cookie[' session_id ', use the session_id () function to access the server's session directly.
Then the problem arises, when the user passes the session_id, the corresponding session has been destroyed. So at this time the server may exist a session, its session_id happens to be the user passed $_cookie[' session_id '???
Note: After the server destroys the session, it will naturally ignore the corresponding session_id of the session. Then it is possible for the server to generate this session_id again and assign it to another session.
Thank you for your gift,!!!!!. session_id Repeat Session Cookies
Share to:
------Solution--------------------
SESSION_ID is a time-dependent value, and as long as the earth is still rotating, there is no repetition.
------Solution--------------------
Generate a number per microsecond, 8 bytes about 100 years, 100 years later, computer or computer?
