Tag Archives: iis

IIS 6.0 appsession cookie and PCI compliance

Synopsis You’re using HAProxy or the ALOHA Load-Balancer to load-balance IIS 6.0 web applications and you want them to pass successfully PCI compliance test. One of the pre-requisite is to force the cookie to be “HttpOnly”, in order to tell … Continue reading

Posted in Aloha, HAProxy, layer7, security | Tagged , , , | Leave a comment