This code?garvinhicking wrote:That Re-Init is performed, when your s9y installation is missing the $_SESSION['SERVER_GENERATED_SID'] value. (top of serendipity_config.inc.php)
Code: Select all
if (!isset($_SESSION['SERVER_GENERATED_SID'])) {
session_regenerate_id(true);
@session_start();
header('X-Session-Reinit: true');
$_SESSION['SERVER_GENERATED_SID'] = true;
}
I installed Debian unstable in a virtual machine and see the following headers:garvinhicking wrote: This in turn can only happen, if your PHP's session storage does not work, because that sessionvalue is created immediately after the session in fact IS set.
I'm not sure about that Debian PHP 5.2.0 version; I think there was a problem with PHP's session_regenerate_id() function in some PHP5 function which got fixed at some point. Maybe debian didn't backport this fix?
Any chance to use a more recent PHP5 version?
Code: Select all
http://192.168.8.132/apache2-default/s9y/1.2/
GET /apache2-default/s9y/1.2/ HTTP/1.1
Host: 192.168.8.132
User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.8.1.12) Gecko/20080129
Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plai
Accept-Language: de,en-us;q=0.7,en;q=0.3
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 300
Connection: keep-alive
Cookie: serendipity[userDefLang]=en; serendipity[old_session]=278bb99637bcce3592
HTTP/1.x 200 OK
Date: Mon, 17 Mar 2008 08:17:58 GMT
Server: Apache/2.2.8 (Debian) PHP/5.2.5-3 with Suhosin-Patch
X-Powered-By: PHP/5.2.5-3
Set-Cookie: PHPSESSID=4d204c4e3493880ce5377b9771fcb14d; path=/
Set-Cookie: PHPSESSID=d145b4af71c4734e2ea8595e84609a0f; path=/
Expires: 0
Cache-Control: no-cache, pre-check=0, post-check=0
Pragma: no-cache
X-Session-Reinit: true
X-Blog: Serendipity
Keep-Alive: timeout=15, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
I can upload the virtual machine (executeable with VMware Player) to the web so that you can download and see for yourself, or isntall the virtual machine on a publicly visible host so that you can log in from remote and try it yourself. Or, I can do whatever you ask to find out what's going wrong here.
Greetings
Marc