Define cookie with HttpOnly flag

Whether you are a current user, former user, a Zimbra employee, or anyone with experience using any of our products, we welcome your feedback. Please include a specific product name and version when relevant.
argen2015
Posts: 4
Joined: Wed Sep 09, 2015 8:18 am

Define cookie with HttpOnly flag

Postby argen2015 » Mon Sep 21, 2015 9:32 am

Dear, I have a Zimbra 8.0.7 implementation and I want to define a cookie with a HttpOnly fag in order to avoid XSS possible attacks.


Where do I have to add a new cookie or modify an existing one in my Zimbra implementation, with nginx as the web engine?


Thanks a lot!!!



Roberto 




argen2015
Posts: 4
Joined: Wed Sep 09, 2015 8:18 am

Define cookie with HttpOnly flag

Postby argen2015 » Mon Sep 21, 2015 9:33 am

Sorry, I say "HttpOnly flag set"

Return to “General Zimbra Feedback”

Who is online

Users browsing this forum: No registered users and 1 guest