Cloud Insidr

Cybersecurity in the Age of the Machine

  • Subscribe!
  • Privacy Policy
  • Legal
  • Contact Us

Join us on Twitter: @CloudInsidr

  • news & alerts
    • events
    • industry analysis
    • industry gossip
    • people
  • cloud, edge & co.
    • AWS
    • administration & orchestration
      • web servers in the cloud
      • mail servers
      • databases
  • cybersec & warfare
    • encryption
  • blockchain
Home Archives for session adoption
Symantec Code Signing (728*90)
Maximize your PHP session security by fixing errors and closing the session adoption vulnerability that allows session fixation attacks

Cloud Insidr 2017-02-20 Leave a Comment

Maximize your PHP session security by fixing errors and closing the session adoption vulnerability that allows session fixation attacks

When the server can’t write to the session data directory, if will use /var/cache/nginx/fastcgi_temp/ and complain in the error log. You don’t want any of these errors, but a setting considered insecure will not even be reported as such. Here is how to bolster your PHP 7 session security with NGINX and php-fpm.

[Read more…]

Filed Under: cybersecurity and cyber warfare, NGINX, php-fpm, web servers in the cloud Tagged With: NGINX, permissions, PHP 7, php-fpm, session, session adoption, session fixation

Comodo Elite SSL (OV) (728*90)

Join Cloud Insidrs!

Symantec Code Signing (200x200)

Tag Cloud

#1 on the TOP500 super computer list AMI AWS AWS CloudHSM AWS EC2 AWS EFS AWS RedShift CentOS certificate cipher suites cryptography cyber security cybersecurity Diffie-Hellman DNS EC2 ECDHE edge devices email encryption Fedora Google HSTS HTTP/2 HTTPS IBM IPv4 kernel Linux mail Mellanox MFA MITM NGINX NVIDIA OpenSSL perfect forward secrecy RSA rsync SSL TLS TLS 1.2 TLS 1.3 TLS vulnerabilities Windows
Secure Site with EV (160x600)

Pearson Education (InformIT)

Pearson Education (Peachpit)

Thawte Code Signing (200x200)

  • Content purchasing and syndication