News Feed
Sections




News Archive
Looking for more information on how to do PHP the right way? Check out PHP: The Right Way

Simon Holywell:
Improve PHP session cookie security
May 14, 2013 @ 14:55:37

Simon Holywell has a new post talking about cookie security in PHP, focusing on some of the PHP configuration settings that can help.

The security of session handling in PHP can easily be enhanced through the use of a few configuration settings and the addition of an SSL certificate. Whilst this topic has been covered numerous times before it still bears mentioning with a large number of PHP sites and servers having not implemented these features.

He talks about the httponly flag when setting the cookie/in the configuration, the "use only cookies" for sessions and forcing them to be "secure only".

0 comments voice your opinion now!
session cookie security improvement tutorial phpini configuration

Link: http://simonholywell.com/post/2013/05/improve-php-session-cookie-security.html

blog comments powered by Disqus

Similar Posts

Zend Developer Zone: Indexing Web Content with PHP and SWISH-E

Lullabot.com: Single Sign-on across Sub-Domains in Drupal with No Extra Modules

HowToForge.com: Installing Lighttpd With PHP5 And MySQL Support On OpenSUSE 11.1

Raphael Stolt's Blog: Phplocing your projects with Phing

Robert Basic's Blog: Creating a chat bot with PHP and Dbus


Community Events

Don't see your event here?
Let us know!


configure composer list php7 symfony opinion interview laravel community series project part2 example yii2 podcast introduction api framework language application

All content copyright, 2015 PHPDeveloper.org :: info@phpdeveloper.org - Powered by the Solar PHP Framework