[Forums] How to avoid Session Fixation?

Hi everyone,

In a short timeframe you will have protection against session fixation attacks out-of-the-box for the platform. This will work the standard way. Once you login, your cookies will be changed in order to avoid attacks using previously compromised cookies. Some more information, you should not change ASP.Net Session cookie. Our solution will use an alternative cookie.

If you wish to know more about it or be part of a beta test program, drop me a private message.