[Webkit-unassigned] [Bug 10957] HttpOnly Cookie Option

bugzilla-daemon at webkit.org bugzilla-daemon at webkit.org
Tue Jul 8 12:38:15 PDT 2008


------- Comment #23 from jim at manico.net  2008-07-08 12:38 PDT -------
http://www.owasp.org/index.php/HTTPOnly is also a great reference. Complete
implementation includes read and write prevention though document.cookie, as
well prevention of reading or writing the session cookie via a XMLHTTPRequest.

Configure bugmail: https://bugs.webkit.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.

More information about the webkit-unassigned mailing list