#280934 follow up by pwolanin: harden the cookie handling in sess_regenerate()...
#280934 follow up by pwolanin: harden the cookie handling in sess_regenerate() by setting our session cookie to be an HTTP only cookie, thus reducing the risk of session stealing via XSS
parent
cca4e8f8
Please register or sign in to comment