File: 15.md

package info (click to toggle)
python-vulndb 0.1.3-4
  • links: PTS, VCS
  • area: main
  • in suites: forky, sid, trixie
  • size: 1,032 kB
  • sloc: python: 446; sh: 196; makefile: 2
file content (7 lines) | stat: -rw-r--r-- 382 bytes parent folder | download | duplicates (3) 
1
2
3
4
5
6
7
 
The most important remediation action is to prevent the server from
accepting client supplied data as session tokens.

Additionally, the client's session token should be changed at specific 
key stages of the application flow, such as during authentication. 
This will ensure that even if clients are able to set their own cookie, 
it will not persist into an authenticated session.