is there any reason to store session keys with empty user_data field? - Printable Version +- CodeIgniter Forums (https://forum.codeigniter.com) +-- Forum: Using CodeIgniter (https://forum.codeigniter.com/forumdisplay.php?fid=5) +--- Forum: Best Practices (https://forum.codeigniter.com/forumdisplay.php?fid=12) +--- Thread: is there any reason to store session keys with empty user_data field? (/showthread.php?tid=1484)

is there any reason to store session keys with empty user_data field? - vancouverwill - 03-13-2015 We used to use database for sesssion keys and switched over to REDIS about a year ago. Works great, super fast but I realized a huge proportion of our database is userd up by session keys with empty user_data, these are most likely from bots and batch jobs but it seems really redundant to store them all. Are there any security reasons to store them all, perhaps to be able to investigate DOS attacks? thanks Will