I want to add another level of security when using php sessions. So i will simply change the session id everytime the page loads.
The code i use is:
$_SESSION = $tmpSession;
Now the problem that i have is that for some reason php adds the session id into the url which I dont want. can anyone help how to do the same thing without having the session id in the url??