Hi all
Wondering if someone could help decipher this problem that I have just encountered
Paypal have been testing my store as requested by myself due to problems with receiving IPN notifications back to my admin.
While testing the store, they created an account and proceeded to place an item in the shopping cart and then proceeded to checkout upto step 3 (order confirmation) (NO PROBLEM YET TILL I LOOK IN USER TRACKING)
When I checked user tracking, I discovered that the tech guy from Paypal somehow during account creation managed to place items in cart under another customers session id even after that customer had logged off from their session.
So instead of the tech guy whom I will refer to as Mr X showing up as Mr X as being logged in it was as though my customer whom I will refer to as Ms Y continued to shop under her name. Tracking shows that this session has been open for over 57 hours.
Come to think it, Of late I have noticed quite a few sessions for guests running into the hundreds of hours without closing. I would say that these sessions contain tracking for possibly several guests. I AM SURE THAT THS IS A PROBLEM
In regard to Bots/spiders there sessions can run into something like 2000 + hours. I am not sure if this is normal.
Below is my configuration for sessions
Please note that I take particular care NOT to leave any session id's in the link url when creating linksTitle Value Action
Session Directory /home/heavenly/public_html/catalogue/cache
Cookie Domain True
Force Cookie Use False
Check SSL Session ID False
Check User Agent False
Check IP Address False
Prevent Spider Sessions True
Recreate Session False
IP to Host Conversion Status true
Any help would be really appreciated!!
Bookmarks