Hi Everyone, Our Jenkins has cookies security vulnerabilities, please see below. Does anyone of you experience the same thing? Any idea how to fix it?
The set cookie for these 3 are not secured: -ACEGI_SECURITY_HASHED_REMEMBER_ME_COOKIE -iconSize -hudson_auto_refresh Set-Cookie:hudson_auto_refresh=false;Path=/;Expires=Thu, 10-Aug-2017 04:05:22 GMT;Max-Age=2592000 -- View this message in context: http://jenkins-ci.361315.n4.nabble.com/Jenkins-cookies-vulnerabilities-tp4900241.html Sent from the Jenkins users mailing list archive at Nabble.com. -- You received this message because you are subscribed to the Google Groups "Jenkins Users" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion on the web visit https://groups.google.com/d/msgid/jenkinsci-users/1499745878805-4900241.post%40n4.nabble.com. For more options, visit https://groups.google.com/d/optout.
