diegods/homelabdspbx
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Add session cookie httponly and set it to true.

Browse Source
This commit is contained in:
markjcrane
2015-12-21 20:52:54 -07:00
parent e2feca300a
commit 5da1286329
10 changed files with 14 additions and 5 deletions
Download Patch File Download Diff File Expand all files Collapse all files
resources/captcha/config.php
+1 -1
View File
@@ -63,7 +63,7 @@ $pathtofonts = "/captcha/fonts/"; //path from the root of the website
//add this to the top of the page where the form is submitted to
//--- begin captcha verification ---------------------
//session_start(); //make sure sessions are started
//ini_set("session.cookie_httponly", True); session_start(); //make sure sessions are started
if (strtolower($_SESSION["captcha"]) != strtolower($_REQUEST["captcha"]) || strlen($_SESSION["captcha"]) == 0) {
echo " <span class=\"h2\">Sorry!</span>\n";