Browse by Tags

All Tags » HttpOnly » Java » Software Security (RSS)
Sorry, but there are no more tags available to filter with.
Monday, November 05, 2007 10:10 PM
Java and HttpOnly
HttpOnly is an HTTP cookie property originally developed by Microsoft that makes cookies "non-scriptable" - any attempts to access the cookie value through JavaScript will fail. HttpOnly mitigates the threat of session hijacking through cross-site scripting...

Posted by Alex | 2 comment(s)

Filed under: , ,