none
How can I Enable the 'Secure' attribute to all sensitive cookies in WSS 3.0 RRS feed

  • Question

  • We had a security audit recently in our SharePoint farm and they have found out a MEDIUM vulnerability risk that as follows:

    Missing Secure Attribute in Encrypted Session (SSL) Cookie
    Cookie: WSS_KeepSessionAuthenticated

    How can I add the 'Secure' attribute to all sensitive cookies in SharePoint 2007 (WSS 3.0)? The site is deployed over SSL on IIS 7 using Integrated Windows Authentication (Active Directory).

    Many
    Thanks!




    • Edited by Tim Robert Wednesday, May 14, 2014 11:26 PM
    Wednesday, May 14, 2014 11:25 PM

Answers