admidio icon indicating copy to clipboard operation
admidio copied to clipboard
verified publisher icon Admidio

Secure PHP Sessions and Cookies

Open ximex opened this issue 9 years ago • 2 comments

https://paragonie.com/blog/2015/04/fast-track-safe-and-secure-php-sessions http://blog.teamtreehouse.com/how-to-create-totally-secure-cookies http://blog.teamtreehouse.com/how-to-create-bulletproof-sessions

Todos

  • [x] Improve security of Cookies (httpOnly, https, path)
  • [ ] Session Id regenerate (If privileges changes) => session_regenerate_id()
  • [ ] Improve IP binding

ximex avatar Oct 26 '16 18:10 ximex

@ximex also the question here: What do you want to change in Admidio?

Fasse avatar Oct 26 '16 18:10 Fasse

i will implement the other 2 things in another version (v3.3 or v4.0)

ximex avatar Nov 03 '16 19:11 ximex