Menu
My log file has the message The session cookie data did not match what was expected. This could be a possible hacking attempt about 5 times a second for around 10 minutes. Clearly some sort of hack attempt. Should I be worried about this and what can I double check to make sure I'm being as secure as possible?
393
Using the database to store session information will protect you from people trying to manipulate their session data. You can also encrypt the session data if you can't/don't want to store session in the database for whatever reason, or you could do both.
It's very simple to make these changes. The documentation does a better job than I could of explaining how to set them up: http://codeigniter.com/user_guide/libraries/sessions.html
82
If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!
Donate Us With
