Welcome, Guest ( Customer Panel | Login )

 All Forums
 VPCart Forum
 VP-ASP 6.50 Features and Facilities
 Setting httponly flag for cookies--security issue
 New Topic  Reply to Topic
 Printer Friendly
Author Previous Topic Topic Next Topic  

Starting Member

7 Posts

Posted - January 02 2013 :  14:38:41  Show Profile  Reply with Quote

I have been informed by my PCI auditor that a new requirement is to set the "httponly" flag on cookies, particularly those having sensitive information. This was their "solution":

Set the "HTTPONLY" flag for cookies containing sensitive information, particularly session tokens.

I am looking for how and where to do this. Can anyone help?


VP-CART Expert

762 Posts

Posted - January 03 2013 :  01:52:46  Show Profile  Reply with Quote
Hey , i found this url http://stackoverflow.com/questions/1056654/cookie-httponly-in-classic-asp and i think it is suitable to fix your problem.
may be you can try that solution/
best regards.
diego m.
Go to Top of Page
  Previous Topic Topic Next Topic  
 New Topic  Reply to Topic
 Printer Friendly
Jump To:
Snitz Forums 2000
0 Item(s)