[owasp-intrinsic-security] HTTPOnly cookie flag

Bil Corry bil at corry.biz
Thu Oct 30 11:41:36 EDT 2008


Another topic, pushing browser vendors to support HTTPOnly for read, write, and XHR:

	http://www.owasp.org/index.php/HTTPOnly#Browsers_Supporting_HTTPOnly


- Bil




More information about the owasp-intrinsic-security mailing list