Possible Duplicate:
Is regenerating the session id after login a good practice?
What is the advantage of regenerating a session id like in codeigniter.
Codeigniter uses its option sess_time_to_update to set the interval to regenerate session id.
Asked
Active
Viewed 176 times
0
Community
- 1
- 1
Jayapal Chandran
- 10,600
- 14
- 66
- 91
1 Answers
2
Well the main advantage is from security perspective to prevent the 'session lock' by an attacker and minimize the window of attack for him.
Vlad Lyga
- 1,133
- 9
- 10