Sessions

Anon

I am programming a site with sessions. The sessions will basically store the logged in user, and carry it throughout the site. The site is not live yet, but i see about 8 or 9 different session files in my /tmp directory. (all of them must be from me) Most of them are zero-length (nobody logged in) but 2 of them have the user logged in. How long do sessions last for, are they deleted automatically? if not, is it safe to have a crontab delete the session files periodically? or would I have to stop apache first?

Linux Slackware kernel 2.2.13 running Apache/1.3.19 PHP/4.0.5

Anon

Sessions should be removed periodically by default according to your session garbage collection settings in php.ini.

However, if you need to manually delete a particular session, it is safe to do so. There is no need to stop Apache first.