Project

General

Profile

Actions

Defect #25157

closed

Surf-Jacking

Added by ajeesh b over 7 years ago. Updated over 7 years ago.

Status:
Closed
Priority:
Normal
Assignee:
-
Category:
-
Target version:
-
Start date:
Due date:
% Done:

0%

Estimated time:
Resolution:
Invalid
Affected version:

Description

A cookie has been set without the secure flag, which means that the cookie can be accessed via unencrypted
connections. The cookie affected:
redmine_session
HASH_redmine_session
How can I stop this issue on my redmine installation.

Actions #1

Updated by Mischa The Evil over 7 years ago

  • Status changed from New to Closed
  • Resolution set to Invalid

This is a session cookie configuration issue and as we don't provide technical support in the issue tracker, I'm going to close this issue as such.

Please read the CookieStore and the Rails session storage documentation or post to the Help forum if more information is needed.

Actions

Also available in: Atom PDF