When the server can’t write to the session data directory, if will use /var/cache/nginx/fastcgi_temp/ and complain in the error log. You don’t want any of these errors, but a setting considered insecure will not even be reported as such. Here is how to bolster your PHP 7 session security with NGINX and php-fpm.
![Maximize your PHP session security by fixing errors and closing the session adoption vulnerability that allows session fixation attacks](https://www.cloudinsidr.com/content/wp-content/uploads/2015/11/cloudinsidr_logo_900px-wide.png)