[Tickets #7903] Insecure Cookies Sanitization Over HTTPS
bugs at horde.org
bugs at horde.org
Tue Jan 27 16:49:34 UTC 2009
DO NOT REPLY TO THIS MESSAGE. THIS EMAIL ADDRESS IS NOT MONITORED.
Ticket URL: http://bugs.horde.org/ticket/7903
------------------------------------------------------------------------------
Ticket | 7903
Created By | adi.zerok at gmail.com
Summary | Insecure Cookies Sanitization Over HTTPS
Queue | Horde Base
Version | 3.3.3
Type | Bug
State | Unconfirmed
Priority | 2. Medium
Milestone |
Patch |
Owners |
------------------------------------------------------------------------------
adi.zerok at gmail.com (2009-01-27 11:49) wrote:
An issue was fixed that allowed the cookies of a session started
over SSL (https) to be transmitted over HTTP as well.
This is known as setting the "secure" flag of the cookie.
More information about the bugs
mailing list