Session files are showing up in the root folder of all my PHP sites on Win9. This would seem to be a security problem to me, but I'm new to PHP. Shouldn't these files be somewhere besides on the website?
BTW, their names are all 'sess_' followed by a 32 digit hex number, and they are all 100-200 bytes in size.
Is this a standard practice that I am just unfamiliar with, or should they be somewhere else?
Many Thanks,
Mike
BTW, their names are all 'sess_' followed by a 32 digit hex number, and they are all 100-200 bytes in size.
Is this a standard practice that I am just unfamiliar with, or should they be somewhere else?
Many Thanks,
Mike