Hello,
I am developing an applicationĀ using CodeIgniter 3.1.4. Below is my session configuration:
Code:
$config['sess_cookie_name'] = 'cisession';
$config['sess_expiration'] = 1200;
$config['sess_use_database'] = TRUE;
$config['sess_table_name'] = 'session';
$config['sess_match_ip'] = TRUE;
$config['sess_time_to_update'] = 300;
During security audit, one issue is flagged asĀ
The web application stores sensitive session information in a permanent cookie (on disk). I am advised to use non-permanent cookies (RAM cookies). Please advise as how to achieve it.
Regards,