AnsweredAssumed Answered

Problems with Cookie Does Not Contain The "secure" Attribute and Cookie Does Not Contain The "secure" Attribute in an application.

Question asked by Diego Silva on Nov 11, 2014

Good evening gentlemen, I am having trouble trying to validate a site's Azure using the system of Qualys.

I had these two marks regarding Cookies, but made the necessary changes in Web.config to correct the problems and even then the status has not changed.

 

Follows the settings made:

 

Web.config

<SessionCookie secure="true" httpOnly="true" />

 

C#

HttpCookie myCookie = new HttpCookie("myCookie");

myCookie.HttpOnly = true;

Response.AppendCookie(myCookie);

 

How do I solve?

 

Thanks Guys

Outcomes