Defect #25157

Surf-Jacking

Added by ajeesh b almost 6 years ago. Updated almost 6 years ago.

Status:ClosedStart date:
Priority:NormalDue date:
Assignee:-% Done:

0%

Category:-
Target version:-
Resolution:Invalid Affected version:

Description

A cookie has been set without the secure flag, which means that the cookie can be accessed via unencrypted
connections. The cookie affected:
redmine_session
HASH_redmine_session
How can I stop this issue on my redmine installation.

History

#1 Updated by Mischa The Evil almost 6 years ago

  • Status changed from New to Closed
  • Resolution set to Invalid

This is a session cookie configuration issue and as we don't provide technical support in the issue tracker, I'm going to close this issue as such.

Please read the CookieStore and the Rails session storage documentation or post to the Help forum if more information is needed.

Also available in: Atom PDF