06-23-2017, 12:41 AM
Hello,
I am developing an application using CodeIgniter 3.1.4. Below is my session configuration:
During security audit, one issue is flagged as The web application stores sensitive session information in a permanent cookie (on disk). I am advised to use non-permanent cookies (RAM cookies). Please advise as how to achieve it.
Regards,
I am developing an application using CodeIgniter 3.1.4. Below is my session configuration:
Code:
$config['sess_cookie_name'] = 'cisession';
$config['sess_expiration'] = 1200;
$config['sess_use_database'] = TRUE;
$config['sess_table_name'] = 'session';
$config['sess_match_ip'] = TRUE;
$config['sess_time_to_update'] = 300;
During security audit, one issue is flagged as The web application stores sensitive session information in a permanent cookie (on disk). I am advised to use non-permanent cookies (RAM cookies). Please advise as how to achieve it.
Regards,