Recently our client migrated to server with suhosin enabled. Till then we were using session sharing to switch between wp and our custom cms. Now the session details are saved in DB after encryption. After pulling out the hair for one day we found that Suhosin is the culprit in the new server for this. Is there any way to read the session datas from the suhosin values?
How to share sessions between two sites when suhosin is enabled?
279 views Asked by Mic At
2
There are 2 answers
0
Chris_O
On
You can use memcached to save sessions in persistent memory cache between servers or sites without having to save to a file or DB.
You can also change the suhosin transparent encryption options. For example this might solve your problem:
suhosin.session.cryptdocroot
Type: Boolean
Default: On
Flag that decides if the transparent session encryption key depends on the Documentroot field.
Related Questions in PHP
- Force sublime text to use PATH from the shell value
- Sublimetext 3 & AngularJS - Syntax highlighting (HTML)
- Longjohn build fail Titanium
- Open current file in IntelliJ wih Sublime
- Shortcut key to show unsaved changes in Sublime Text 3
- How should I create a build system that can take STDIN in Sublime Text 3 under OSX?
- sublime text next_result open blank file
- Sublime Text line wrap and commit messages
- Sublime Text won't output Java println statements in main method
- Sublime Text: set language for each file
Related Questions in WORDPRESS
- Force sublime text to use PATH from the shell value
- Sublimetext 3 & AngularJS - Syntax highlighting (HTML)
- Longjohn build fail Titanium
- Open current file in IntelliJ wih Sublime
- Shortcut key to show unsaved changes in Sublime Text 3
- How should I create a build system that can take STDIN in Sublime Text 3 under OSX?
- sublime text next_result open blank file
- Sublime Text line wrap and commit messages
- Sublime Text won't output Java println statements in main method
- Sublime Text: set language for each file
Related Questions in SESSION
- Force sublime text to use PATH from the shell value
- Sublimetext 3 & AngularJS - Syntax highlighting (HTML)
- Longjohn build fail Titanium
- Open current file in IntelliJ wih Sublime
- Shortcut key to show unsaved changes in Sublime Text 3
- How should I create a build system that can take STDIN in Sublime Text 3 under OSX?
- sublime text next_result open blank file
- Sublime Text line wrap and commit messages
- Sublime Text won't output Java println statements in main method
- Sublime Text: set language for each file
Related Questions in SUHOSIN
- Force sublime text to use PATH from the shell value
- Sublimetext 3 & AngularJS - Syntax highlighting (HTML)
- Longjohn build fail Titanium
- Open current file in IntelliJ wih Sublime
- Shortcut key to show unsaved changes in Sublime Text 3
- How should I create a build system that can take STDIN in Sublime Text 3 under OSX?
- sublime text next_result open blank file
- Sublime Text line wrap and commit messages
- Sublime Text won't output Java println statements in main method
- Sublime Text: set language for each file
Popular Questions
- How do I undo the most recent local commits in Git?
- How can I remove a specific item from an array in JavaScript?
- How do I delete a Git branch locally and remotely?
- Find all files containing a specific text (string) on Linux?
- How do I revert a Git repository to a previous commit?
- How do I create an HTML button that acts like a link?
- How do I check out a remote Git branch?
- How do I force "git pull" to overwrite local files?
- How do I list all files of a directory?
- How to check whether a string contains a substring in JavaScript?
- How do I redirect to another webpage?
- How can I iterate over rows in a Pandas DataFrame?
- How do I convert a String to an int in Java?
- Does Python have a string 'contains' substring method?
- How do I check if a string contains a specific word?
Popular Tags
Trending Questions
- UIImageView Frame Doesn't Reflect Constraints
- Is it possible to use adb commands to click on a view by finding its ID?
- How to create a new web character symbol recognizable by html/javascript?
- Why isn't my CSS3 animation smooth in Google Chrome (but very smooth on other browsers)?
- Heap Gives Page Fault
- Connect ffmpeg to Visual Studio 2008
- Both Object- and ValueAnimator jumps when Duration is set above API LvL 24
- How to avoid default initialization of objects in std::vector?
- second argument of the command line arguments in a format other than char** argv or char* argv[]
- How to improve efficiency of algorithm which generates next lexicographic permutation?
- Navigating to the another actvity app getting crash in android
- How to read the particular message format in android and store in sqlite database?
- Resetting inventory status after order is cancelled
- Efficiently compute powers of X in SSE/AVX
- Insert into an external database using ajax and php : POST 500 (Internal Server Error)
You cant decrypt suhosin session details. It better to change the authentication method. Disabling suhosin is a compromising on the security.