This article helped me get rid of the PHPSESSID string that appears on URLs when you first visit the site. I’ve noticed a number of sites linking to without deleting this portion of the URL first.

PHPSESSID is used with PHP sessions to store information usually handled by cookies. I can’t expertly say what is the risk in making this ID visible, but I sure as hell wouldn’t want to take a chance that someone could exploit it.

If you are linking to any content on, please check that your link does not contain PHPSESSID. If it does, it’s probably best to remove it.