问题
Currently we are facing a problem regarding session fixation. We do have one site which is secured i.e. Https and there is no authentication for it. It means it has anonymous access. So, we are facing session fixation problem from hacker. Can someone help and guide on this????
回答1:
You should find the information you need here:
OWASP - information about Session Fixation
Session Fixation Vulnerability in ASP.NET - Session Fixation in ASP.NET
来源:https://stackoverflow.com/questions/15021431/how-to-protect-my-site-from-session-fixation