Protects against cross-site request forgery attacks.
Saves the current PHP session.
You can change the settings at any time. A link is at the bottom of the page. A reload of the page is then required.