Newsgroups: php.internals
Path: news.php.net
Xref: news.php.net php.internals:122539
X-Original-To: internals@lists.php.net
Delivered-To: internals@lists.php.net
Received: from php-smtp4.php.net (php-smtp4.php.net [45.112.84.5])
	by qa.php.net (Postfix) with ESMTPS id C22401AD8F6
	for <internals@lists.php.net>; Sat,  2 Mar 2024 22:22:50 +0000 (UTC)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=php.net; s=mail;
	t=1709413834; bh=xNyg6VNMW63Pa3FhfseyhUA9dBT6g1keFeQOw1h7w9k=;
	h=From:Date:Subject:To:From;
	b=gZ7X66XVJFt+JpLSkKj7X+4SbgNSwI5Nn1UkGbw7OUH/uJ/yypQo7hhpkunpZ6BtE
	 rqs4RbruB0O/TtKhmFgR5zjDgCjBxC3Q4puaSY7AZryU5wu5AzN4qexhi69sESaD4D
	 3GZPg0AJx7+EbbfphLSUu6hdekoKx6X8kJnWD0gdo0G2yLn3l6vSpn++GUl7XfhgWK
	 OAMjxp6/ZL0+OnYX5Cv4eX4RQF+jULWhy5KA8qgFPn295w/fs9XaZX3JOrsxzikq2+
	 jx37TqiI32+iKSJykiKKHc5WmrjQr745ww/w0zfJ9hZ3vWjORK3vRqxUJ0qSxCXFq6
	 oPJQbbcIWta2Q==
Received: from php-smtp4.php.net (localhost [127.0.0.1])
	by php-smtp4.php.net (Postfix) with ESMTP id 59D81189A0B
	for <internals@lists.php.net>; Sat,  2 Mar 2024 21:10:29 +0000 (UTC)
X-Spam-Checker-Version: SpamAssassin 4.0.0 (2022-12-13) on php-smtp4.php.net
X-Spam-Level: 
X-Spam-Status: No, score=0.8 required=5.0 tests=BAYES_50,DKIM_SIGNED,
	DKIM_VALID,DKIM_VALID_AU,DKIM_VALID_EF,DMARC_PASS,
	FREEMAIL_ENVFROM_END_DIGIT,FREEMAIL_FROM,RCVD_IN_DNSWL_NONE,
	RCVD_IN_MSPIKE_H2,SPF_HELO_NONE,SPF_PASS,T_SCC_BODY_TEXT_LINE
	autolearn=no autolearn_force=no version=4.0.0
X-Spam-Virus: No
X-Envelope-From: <tekiela246@gmail.com>
Received: from mail-lj1-f169.google.com (mail-lj1-f169.google.com [209.85.208.169])
	(using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)
	 key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256)
	(No client certificate requested)
	by php-smtp4.php.net (Postfix) with ESMTPS
	for <internals@lists.php.net>; Sat,  2 Mar 2024 21:10:28 +0000 (UTC)
Received: by mail-lj1-f169.google.com with SMTP id 38308e7fff4ca-2d2509c66daso39697401fa.3
        for <internals@lists.php.net>; Sat, 02 Mar 2024 13:10:18 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=gmail.com; s=20230601; t=1709413816; x=1710018616; darn=lists.php.net;
        h=to:subject:message-id:date:from:mime-version:from:to:cc:subject
         :date:message-id:reply-to;
        bh=xNyg6VNMW63Pa3FhfseyhUA9dBT6g1keFeQOw1h7w9k=;
        b=AS6Dip5DhEUMCtCH3QRgFXRsnfCZA7yxGWo7lxWGTEcvFQu1tSp1IhudvxwTIdtoty
         uVT/4H4CvBxEcIB6cJI/J7Umxwx8olgnFOedMLg1myOVNodvcqFugsXxcuDzD5gDK34x
         VhOyvhQwq9Oght/hh8lrvnQwKBV6zJXqGiLaE2TZ9iiXStGxGrE38T2tYRfBaOXXoNnT
         5DsG3P/r/EFBJgkrLVt6oBAhQFPhyCq59+hsdQgrqYGsyYEE0GbAbkiapAiz+Bwm3gT7
         P3TsEzXW2LvzJtryvW+jpuaU11979ytyV2ZTYqW+KDV0Ufpu8GE4spLT1qzCtnQQ3ZZY
         qQuQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20230601; t=1709413816; x=1710018616;
        h=to:subject:message-id:date:from:mime-version:x-gm-message-state
         :from:to:cc:subject:date:message-id:reply-to;
        bh=xNyg6VNMW63Pa3FhfseyhUA9dBT6g1keFeQOw1h7w9k=;
        b=AtkNTb/4J/XRiYjNXvnNjDtVFljfJ/gkvz29RZytJd39wsSAs0rUXssAWUWT5v59mF
         MnzeH4miCib5P+52T8LPiYdWYiBB1DXSLRYzo8lkWiHwGCHA+ubl9rggdi6xGL88qYgO
         iu1p+wFQtAfBfrouDa90mxrGCJrdFbC92UosTIsDpdGO1IpcPh5Mb+xCeGImUuOu4vHH
         C94FZZ0TcW/QLQ21Oc7Z/JgEMRoy0pHiQ3l2ug1Gt1WHzePm30biLirNrf+d6N6otx09
         ns4DdTk8vfuweFlQQKKFYVnOIUDOP/P4Hvk6Pv3kSexB8GLhP8QWXmi9SJxPknfxfT09
         Zi2Q==
X-Gm-Message-State: AOJu0Yw7jfbIhdz9NP93Abm64sL48alJK3teC8QbE+Y7xw3wiqkMJ1A5
	UbJgLsqd6q6sINcuA9VlOCOeCyzlu7p4rqcX8oSx8c6NmO0HXzvLePs0mvTU52YyiiRumx6KUgM
	wXfrPaxcRqLsbEbqGYd67gGoxo2JhxqIgYyo=
X-Google-Smtp-Source: AGHT+IFfg1pPyCP8FSdNPHoJuyoSXE8SPbuHmzGzV7xVdeCy2iZuoexlMdwSXqcg4CtqVJRewzYS3IWBbJ4rleiyD3I=
X-Received: by 2002:a2e:a988:0:b0:2d2:481a:3b54 with SMTP id
 x8-20020a2ea988000000b002d2481a3b54mr4655873ljq.22.1709413815681; Sat, 02 Mar
 2024 13:10:15 -0800 (PST)
Precedence: bulk
list-help: <mailto:internals+help@lists.php.net
list-unsubscribe: <mailto:internals+unsubscribe@lists.php.net>
list-post: <mailto:internals@lists.php.net>
List-Id: internals.lists.php.net
MIME-Version: 1.0
Date: Sat, 2 Mar 2024 22:10:04 +0100
Message-ID: <CAGBsUrera8cVE5nW1H6bCSok+gOjpHCyqutaCewoXEtYju-8yA@mail.gmail.com>
Subject: [PHP-DEV] [RFC] [Discussion] Deprecate GET/POST sessions
To: PHP internals <internals@lists.php.net>
Content-Type: text/plain; charset="UTF-8"
From: tekiela246@gmail.com (Kamil Tekiela)

Hi Internals,

I would like to start a discussion on a new RFC
https://wiki.php.net/rfc/deprecate-get-post-sessions

Please let me know whether the idea is clear and the RFC is understandable.

In particular, I am looking for any feedback as to why this is a bad
idea. The primary motivation behind this RFC is to reduce potential
security pitfalls.

Regards,
Kamil Tekiela