Cookie security for nginx

Johann Spies jspies at
Tue Oct 10 08:04:50 UTC 2017

A security scan on our server showed :

Vulnerability Detection Method
Details: SSL/TLS:
Missing `secure` Cookie Attribute
Version used:
$Revision: 5543

This is on Debian 8.9. and nginx  1.6.2-5+deb8u5.

I am uncertain on how to fix this using standard debian packages.

Can you help me fixing this please?


Johann Spies                            Telefoon: 021-808 4699
Databestuurder /  Data manager		Faks: 021-883 3691

Sentrum vir Navorsing oor Evaluasie, Wetenskap en Tegnologie
Centre for Research on Evaluation, Science and Technology 
Universiteit Stellenbosch.

The integrity and confidentiality of this email is governed by these terms / Hierdie terme bepaal die integriteit en vertroulikheid van hierdie epos.

More information about the nginx mailing list