Checksum/PHP_SESSION.php

## PHP_SESSION.php
<?php

// Generating stronger PHP session IDs

// Change from default PHPSESSID
ini_set('session.name','my_cookie');

// Use only cookies to prevent session ID hijacking
ini_set('session.use_cookies', 'true');
ini_set('session.use_only_cookies', 'true');

// By default, ID is generated using MD5. Make it longer and more secure
ini_set('session.hash_function', 'sha256');

// Get random bytes to increase entropy
ini_set('session.entropy_file', '/dev/urandom');
ini_set('session.entropy_length', '32');

session_start();
	<?php

	// Generating stronger PHP session IDs

	// Change from default PHPSESSID
	ini_set('session.name','my_cookie');

	// Use only cookies to prevent session ID hijacking
	ini_set('session.use_cookies', 'true');
	ini_set('session.use_only_cookies', 'true');

	// By default, ID is generated using MD5. Make it longer and more secure
	ini_set('session.hash_function', 'sha256');

	// Get random bytes to increase entropy
	ini_set('session.entropy_file', '/dev/urandom');
	ini_set('session.entropy_length', '32');

	session_start();