dgn
Reputation: 103
Missing Secure Attribute in Encrypted Session (SSL) Cookie Recheck
I tested web application with commercial tool for penetration test .I found a bug which is related to Missing Secure Attribute in Encrypted Session (SSL) Cookie. Web application has written .Net . For this reason I added this content to web config:
<httpCookies requireSSL="true" />
After that I checked application in browser with "Advanced Cookie Manager" add-on in Firefox. Results of Advanced Cookie Manager some attributes isSecure's value true, some attribute's IsSecure value false. I want to re-check secure attribute.How can I do this?
Upvotes: 1
Views: 4232
Answers (1)
Related Questions
- How can I set the Secure flag on an ASP.NET Session Cookie?
- asp.net secure cookies
- How to fix "Cookie not Sent Over SSL (4720)" ASP.NET MVC?
- Secure Cookies in ASP.NET
- asp.net cookie secure failing on localhost
- Secure Cookie Issue: Cookies only secure sometimes
- Secure session cookies in ASP.NET over HTTPS
- "Missing Secure Attribute in Encrypted Session (SSL) Cookie"
- ASP.NET Cookie not set when using https
- cookie in default not secure but secure in SSL