To see my page describing the peculiarities of PHP at SCCC , go to : http://www.seattlecentral.edu/it-services/wiki/PHPSCCC

To read my step-by-step howto for using sessions at SCCC, go to : http://www.seattlecentral.edu/it-services/wiki/PHPSessions

To see the source of this script, go to : http://www.seattlecentral.edu/~dmartin/test.phps

Let's see if this script is running as 'dmartin'

This php script is running as the user: dmartin

Lets see if the session features are working...

Your session ID is 7pdmhafmdtk4fa455vepnn03o7

You have seen this page 0 times.

To maintain a session with cookies, use the normal URL, like so...

http://www.seattlecentral.edu/~dmartin/test.php

To maintain a session without cookies, pass the session ID in the URL, like so...

http://www.seattlecentral.edu/~dmartin/test.php?PHPSESSID=7pdmhafmdtk4fa455vepnn03o7

To remove the cookie and remove state information, click here..

http://www.seattlecentral.edu/~dmartin/test.php?ENDSESSION=true

There's nothing special about ENDSESSION, I just test for it at the beginning of the script and then reset the session if I find it.

Now lets look at some file permissions stuff...

Remember, this php script is running as the user: dmartin

Let's look at the file permissions in our session.save_path

In /home/dmartin/.php/session...

• "sess_7pdmhafmdtk4fa455vepnn03o7", permissions = 0600
• "sess_cvn7hgkq21jvm2gsfcj094jv31", permissions = 0600
• "sess_p0enhg1gi8104bv3l5oert44t3", permissions = 0600
• "sess_pmi2aqto1naiunk2pdn3ult2j7", permissions = 0600

If the permissions say '0600', then only the owner of those files can read and write to them. That means you can't write a script to read the contents of these files, only I can do that. That's pretty cool.

To see the source of this script, go to : http://www.seattlecentral.edu/~dmartin/test.phps