« Verifying 'WebDAV HTTP Method PROPFIND Enabled' Remediation was Successful | Main | CryptoNark v0.4.5 Released »

04/26/2011

TomcatExpert: Session Fixation Protection

The tomcatexpert site has a new article describing new session fixation protection features built into tomcat 7 (and more current versions of tomcat 6) written by Mark Thomas.  It describes what it is, what it is used for, and how to disable it if necessary (although turning it off should not be done unless absolutely necessary).  Check it out!

TrackBack

TrackBack URL for this entry:
http://www.typepad.com/services/trackback/6a01156fbc6fe6970c01538e21e5ae970b

Listed below are links to weblogs that reference TomcatExpert: Session Fixation Protection:

Comments