XII
Contents
ch A P te r 14 secu re ses s Io n sto r Ag e 195
PHP Default Session Storage Overview 196
Session Storage Life Cycle 196
Session Locking 197
AJAX and Session Locking 197
Session Management Configuration 197
Configure Security before Session_Start() Is Called 198
Properly Destroy Session 201
Encrypted Session Storage 202
Encrypted Session Storage via MySQL 202
Creating a Custom Session Handler in MySQL 202
Encrypted Session Storage via File System 224
Class SecureSessionFile Details 229
ch A P te r 15 secu re Fo r ms A nd Acc ou nt reg Is tr AtI on 239
Secure User Registration and Login Process Overview 239
Unlimited Password Length, Unlimited Password Characters 240
Secure Form Landing Pages Are over SSL 241
Secure Form Nonc