Home » PHP » PHP Sessions » Question

PHP Sessions

Easy Questions

PHP

PHP Arrays
PHP MySQL Database
PHP Exception Handling
PHP Error Handling
PHP Filters Advanced
PHP Filters
PHP Sessions
PHP File Upload
PHP File Handling
PHP Date/Time
PHP Multidimensional Arrays
PHP Forms
PHP Sorting Arrays
PHP Introduction
PHP Functions
PHP For Loops
PHP While Loops
PHP Switch Statement
PHP If Else/Else If Statement
PHP Operators
PHP Constants
PHP Strings
PHP Echo/Print
PHP Variables
PHP Syntax
  1. An attacker somehow obtains an unsuspecting user’s SID and then using it to impersonate the user in order to gain potentially sensitive information. This attack is known as..
    1. session-copy
    2. session-hijack
    3. session-fixation
    4. session-fixing
    5. None of these
Correct Option: C

You can minimize this risk by regenerating the session ID on each request while maintaining the session-specific data. PHP offers a convenient function named session_regenerate_id() that will replace the existing ID with a new one.


Your comments will be displayed only after manual approval.