From e2bceaefe6b4723230fd33a30e11c1c927712998 Mon Sep 17 00:00:00 2001
From: Aleksander Machniak <alec@alec.pl>
Date: Sat, 18 Jul 2015 10:05:34 -0400
Subject: [PATCH] Support more secure hashing algorithms for auth cookie - configurable by PHP's session.hash_function (#1490403)

---
 .htaccess |    1 +
 1 files changed, 1 insertions(+), 0 deletions(-)

diff --git a/.htaccess b/.htaccess
index 95e5bf4..c584ac0 100644
--- a/.htaccess
+++ b/.htaccess
@@ -17,6 +17,7 @@
 php_flag    suhosin.session.encrypt     Off
 
 #php_value   session.cookie_path     /
+#php_value   session.hash_function   sha256
 php_flag    session.auto_start       Off
 php_value   session.gc_maxlifetime   21600
 php_value   session.gc_divisor       500

--
Gitblit v1.9.1