implement umbraco website without session hijacking - Using Umbraco and getting started - our.umbraco.com

Press Ctrl / CMD + C to copy this to your clipboard.

Copied to clipboard

Flag this post as spam?

This post will be reported to the moderators as potential spam to be looked at

Yajamanam 36 posts 106 karma points

Jul 29, 2018 @ 16:08

0

Implement Umbraco Website without session Hijacking

Hi All,

I am implementing Hack Proof Umbraco MVC Application. how to implement the below scenarios to secure from session hijacking.

1.Secure your ASP.NET applications from XSS Attack. 2.How to prevent Session Hijacking.(AspnetSession_id)

Thanks, Pradeep

Copy Link
MuirisOG 382 posts 1284 karma points

Aug 03, 2018 @ 10:46

2

Pradeep,

I'm not sure this is the right forum, especially as this is such a broad topic and your query is very general, but just to give you some pointers, there are two areas you could investigate:

The first, IIS, as it will capture many XSS attacks. Make sure it is up to date and locked down.

The second, MVC forms have a HTML helper @Html.AntiForgeryToken() which you could look into.

Thanks

Muiris

Copy Link
Yajamanam 36 posts 106 karma points

Sep 04, 2018 @ 10:20

0

Thanks MuirisOG, That sounds good Cheers..!

Copy Link
is working on a reply...

Please Sign in or register to post replies

Write your reply to:

Editor

Preview

Draft