Sign Up to our social questions and Answers Engine to ask questions, answer people’s questions, and connect with other people.
Login to our social questions & Answers Engine to ask questions answer people’s questions & connect with other people.
Lost your password? Please enter your email address. You will receive a link and will create a new password via email.
Please briefly explain why you feel this question should be reported.
Please briefly explain why you feel this answer should be reported.
Please briefly explain why you feel this user should be reported.
My log file has the message The session cookie data did not match what was expected. This could be a possible hacking attempt about 5 times a second for around 10 minutes. Clearly some sort of hack attempt. Should I be worried about this and what can I double check to make sure I’m being as secure as possible?
Using the database to store session information will protect you from people trying to manipulate their session data. You can also encrypt the session data if you can’t/don’t want to store session in the database for whatever reason, or you could do both.
It’s very simple to make these changes. The documentation does a better job than I could of explaining how to set them up: http://codeigniter.com/user_guide/libraries/sessions.html