The configuration community:
session.cookie_httponly
Information
Marks the cookie as accessible only through the HTTP protocol. This means that the cookie won't be accessible by scripting languages such as JavaScript. This setting can effectively help to reduce identity theft through XSS attacks (although it is not supported by all browsers).
Syntax
Example
Impartial web hosting comparison
tags in Configurations
Recent Configurations
| Configuration | Updated |
|---|---|
| php.ini default production configuration | 2010-03-08 09:12 |
| MySQL example config file for systems with 4GB of memory | 2009-04-12 14:35 |
| Apache HTTP server configuration file 2.2.8 | 2008-05-28 19:18 |
| Optimizing sysctl | 2008-01-10 22:19 |
| Sample IPTABLES configuration file for Linux workstations | 2007-08-27 18:33 |
Recent Directives
| Directive | Updated |
|---|---|
| base_url | 2007-07-08 21:42 |
| db_url | 2007-07-08 21:34 |
| session.cookie_secure | 2007-07-01 18:37 |
| session.use_trans_sid | 2007-07-01 18:37 |
| session.use_cookies | 2007-07-01 18:37 |
Highest rated nodes
Navigation
Syndicate
