Dear All

I have a web site that uses php sessions (cookie based via PHPLIb) to authenticate users and allow them access to certain areas.

Since upgrading some of the clients to IE6 SP1, these clients can no longer access the site. On trying to login they are continually returned to the login prompt. I have discovered that IE6 now uses the compact privacy policy:

http://www.oreillynet.com/pub/wlg/1539

http://www.sitepoint.com/article/p3p-cookies-ie6/2

which prevents it from accepting cookies from sites that don't contain the P3P policy. I have carried out the suggested fixes but the ste still doesn't work.

I have also come across the following:

http://support.microsoft.com/default.aspx?kbid=831167

which suggest that altering the keep-alive time out value above 60 will fix the problem. Again I've tried this and it makes no difference.

Can anyone suggest what might be the problem? Alternatively has anyone had a similiar problem?

Any help would be much appreciated.

Paul

Forgive me if this was listed in the links you posted. I only glanced at the articles quickly, as time is a bit restrictive right now... But, have you tried adding this line right below you start the session?

<?php
session_start();
header("Cache-control: private"); // IE 6 Fix.
?>

My test environment is IE6, SP1, since I write my company's Intranet, and the company is exclusively IE. The sessions I run in my Admin pages don't fail in my working or test environment, and haven't failed since I implemented this little gem in my scripts.

Dear All

I've figured the problem out. The name of the server contained underscores, ie:

cnc_bfhxx_wb002

As soon as I changed the name to something that didn't include the underscores it all started working.

Many thanks

Paul

I never would have caught that since my server's name is all letters. That's interesting since (even with the underscores), the original server's name follows proper naming conventions... hmmmmmm....

Anyhow, good catch, and thanks for posting the find.