Practical Network Scanning by Ajay Singh Chauhan

Author:Ajay Singh Chauhan
Language: eng
Format: epub
Tags: COM053000 - COMPUTERS / Security / General, COM043000 - COMPUTERS / Networking / General, COM060040 - COMPUTERS / Security / Online Safety and Privacy
Publisher: Packt Publishing
Published: 2018-05-24T10:57:45+00:00

Cookies are a set of information stored on the client browser, which are then sent to the server with every subsequent request made by the client during the session. Cookies are primarily used for authentication and maintaining sessions. It becomes very important to secure cookies effectively in order to avoid session hijacking. Cookies can be secured by properly setting cookie attributes. These attributes are:

Secure

Domain

Path

HTTPOnly

Expires

A developer only encrypts the main login page. Other sensitive and non-sensitive information is sent to the server in an unencrypted format. Keep in mind that cookies are also sent along with these requests. If they are unencrypted then this gives an attacker the opportunity to sniff data to steal session information from these cookies. To avoid leaking session information to attackers, make sure that the cookies are also only transmitted over HTTPS connections, not HTTP connections. This can be done with the help of the secure attribute of a cookie. You can also play with all other attributes such as HTTPOnly. This protects you from XSS cross site scripting, which can steal data from cookies.

Download

Copyright Disclaimer:
This site does not store any files on its server. We only index and link to content provided by other sites. Please contact the content providers to delete copyright contents if any and email us, we'll remove relevant links or contents immediately.