本文介绍了如何保护经典的 ASP ASPSESSIONID cookie?的处理方法,对大家解决问题具有一定的参考价值,需要的朋友们下面随着小编来一起学习吧!

问题描述

有没有办法将经典的 ASP ASPSESSIONID* cookie 标记为安全?似乎 ASP ISAPI 处理程序在我的页面完成渲染后添加了该会话 id cookie,因此将代码放在我的页面末尾以循环通过 Response.Cookie 集合并将它们标记为安全似乎不会触及 ASPSESSIONID* cookie.还有其他方法吗?

Is there a way to mark classic ASP ASPSESSIONID* cookies as secure? It appears that the ASP ISAPI handler adds that session id cookie after my page is done rendering so putting code at the end of my page to loop through the Response.Cookie collection and mark them as secure doesn't seem to touch the ASPSESSIONID* cookie. Any other way of doing this?

推荐答案

IIS 管理器提供的标准 UI 上没有.但是,您可以通过 AspKeepSessionIDSecure 元数据库值

There isn't on the standard UI provided by IIS manager. However, you can enable secure cookies for the SessionID via the AspKeepSessionIDSecure Metabase value

这篇关于如何保护经典的 ASP ASPSESSIONID cookie?的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持!

07-30 05:31
查看更多