Jochem Maas wrote:
NO - DONT EVER DO THIS!!!! tmp/session files should not be stored in a
directory that
can be [potentially] read via http.
.htaccess directives can be used to block access to the dir BUT I
still would recommend
keeping 'tmp' outside of the web root.
just make sure 'tmp' is writable by the user the webserver is running as.
Hi All,
thanx. How do I determine what user httpd is running as? Cheers.
Mark Sargent
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
