diff --git a/configs/production.ini b/configs/production.ini
--- a/configs/production.ini
+++ b/configs/production.ini
@@ -290,12 +290,12 @@ beaker.cache.repo_cache_long.expire = 25
 ####################################
 
 ## .session.type is type of storage options for the session, current allowed
-## types are file(default), ext:memcached, ext:database, and memory.
-#beaker.session.type = file
+## types are file, ext:memcached, ext:database, and memory(default).
+beaker.session.type = file
+beaker.session.data_dir = %(here)s/data/sessions/data
 
 ## db based session, fast, and allows easy management over logged in users ##
 #beaker.session.type = ext:database
-#beaker.session.lock_dir = %(here)s/data/cache/session_db_lock
 #beaker.session.table_name = db_session
 #beaker.session.sa.url = postgresql://postgres:secret@localhost/rhodecode
 #beaker.session.sa.url = mysql://root:secret@127.0.0.1/rhodecode
@@ -304,6 +304,7 @@ beaker.cache.repo_cache_long.expire = 25
 
 beaker.session.key = rhodecode
 beaker.session.secret = production-rc-uytcxaz
+#beaker.session.lock_dir = %(here)s/data/sessions/lock
 
 ## Secure encrypted cookie. Requires AES and AES python libraries
 ## you must disable beaker.session.secret to use this
@@ -437,6 +438,13 @@ vcs.server.enable = true
 vcs.server = localhost:9900
 # Available protocols: pyro4, http
 vcs.server.protocol = pyro4
+
+# available impl:
+# vcsserver.scm_app (EE only, for testing),
+# rhodecode.lib.middleware.utils.scm_app_http
+# pyro4
+#vcs.scm_app_implementation = rhodecode.lib.middleware.utils.scm_app_http
+
 vcs.server.log_level = info
 vcs.start_server = false
 vcs.backends = hg, git, svn