Protect Against XSS by Enabling HttpOnly for Linux Apache PHP | HttpOnly is a session cookie flag created to protect against cross site scripting and theft of session cookies. For good security, this should be enabled for PHP running under Apache especially for sites such as WordPress, Drupal, Joomla, and other popular PHP-based web applications. OWASP has some information on HttpOnly. I’ll show you how to
Featured Links
Random Posts
- Install Firefox 4 in Ubuntu 10.04 / 10.10
- Batch Resize from Command Line
- Enable or Disable Compression in Apache
- Make your terminal snow
- Crack Wordpress Password Hashes with hashcat How-To
- Debian 6 Squeeze Beta 2
- Linux Mint Debian Edition LMDE Review
- Migrate System Packages Ubuntu
- SysRq Key to the Rescue!
- MySQL my.cnf Performance Tuning
Recent Comments
- Auroch on Install LibreOffice 4 with Debian Wheezy Backports
- Bravo on HandBrake could not find VLC or your VLC is incompatible
- risa on Repair /etc/passwd and /etc/group
- Acer Bic on How to Kill Zombie Processes
- Scott Miller on How to Install KDE Desktop in Debian Linux
- Scott Miller on Install aircrack-ng on Debian Linux
- xurnia on Install aircrack-ng on Debian Linux
- Marguerite Maynard on Crack WordPress Password Hashes with hashcat How-To
- Joakim on Install nmap 6 on Debian or Ubuntu Linux
- Scott Miller on Enable Automatic Updates in Ubuntu Linux
Support scottlinux.com
If any guides or tips helped, consider buying scott a cup of coffee.
