I understand that on regular hosting that is shared, storing PHP periods within the default location (/tmp) may present security issues. A VPS doesn't have this problem. Therefore, I suppose VPS cloud hosting doesn't. But how about regular cloud hosting? Is the fact that just hosting that is shared over multiple computer systems, and therefore PHP periods would be susceptible to the spying eyes of other webhosting clients on that cloud? Or perhaps is there different things about (non-VPS) cloud hosting that safeguards from PHP session storage location weaknesses?

Hosting that is shared only denotes that the website hosting provider places multiple internet sites on one server.

Cloud hosting uses exactly the same concept and it is the truth is yet another kind of hosting that is shared, however with greater upwards and downwards scalability.

One problem with hosting that is shared is the fact that inside the context of merely one server, there's a set quantity of physical space. Even though host company will provision their servers in a way that you simply don’t encounter capacity problems, the problem still remains. Cloud hosting removes that possibility by changing the idea of the person physical server, with what virtualized and highly scalable infrastructure.

Cloud hosting overview

However the security continues to be an issue in cloud hosting. The only real difference is your files are saved in multiple servers. And you don't know and trust in which the files are saved. So for better session handling and security I'll advice you to employ database to keep and manage periods for an additional reasons.

  1. Only you can get the session data.In hosting that is shared it will help you plenty.

  2. Each server may have its very own directory where these session files are maintained, so if you're employing load balancing across multiple servers there's no guarantee that the request a current session will be presented towards the server that is maintaining the condition for your session.

  3. It might be a hardship on a website administrator to do such queries as "the number of periods are presently active?" or "which customers are presently drenched in?".But when you're storing within the database you'll be able to track.

  4. The applying must have the ability to operate on multiple servers without server affinity.

Here is a superb article about storing periods in database by Chris Shiflett.

Hope it will help.

I possibly could be wrong, but many "cloud hosting" services, as with not a "VPS" service, is simply hosting that is shared on the cloud server the host scales as needed.

The only real time I've found storing periods in, say for instance "/temp", secure, happens when I am the only real the only real person while using server.