Mercurial > defr > drupal > core

diff includes/session.inc @ 17:8e6257f3ae39 6.8
Drupal 6.8
author: Franck Deroche <webmaster@defr.org>
date: Tue, 23 Dec 2008 14:32:55 +0100
parents: 4347c45bb494
--- a/includes/session.inc	Tue Dec 23 14:32:44 2008 +0100
+++ b/includes/session.inc	Tue Dec 23 14:32:55 2008 +0100
@@ -1,5 +1,5 @@
 <?php
-// $Id: session.inc,v 1.44.2.5 2008/12/08 14:42:30 goba Exp $
+// $Id: session.inc,v 1.44.2.6 2008/12/11 00:29:34 goba Exp $
 
 /**
  * @file
@@ -97,10 +97,6 @@
     setcookie(session_name(), '', time() - 42000, '/');
   }
 
-  extract(session_get_cookie_params());
-  // Set "httponly" to TRUE to reduce the risk of session stealing via XSS.
-  // This has no effect for PHP < 5.2.0.
-  session_set_cookie_params($lifetime, $path, $domain, $secure, TRUE);
   session_regenerate_id();
 
   db_query("UPDATE {sessions} SET sid = '%s' WHERE sid = '%s'", session_id(), $old_session_id);
author	Franck Deroche <webmaster@defr.org>
date	Tue, 23 Dec 2008 14:32:55 +0100
parents	4347c45bb494
children