0

WARN [SessionFixationProtectionStrategy] Your servlet container did not change the session ID when a new session was created. You will not be adequately protected against session-fixation attacks

asked 2014-03-27 06:57:39 +0800

Ashutosh gravatar image Ashutosh
1

updated 2014-03-27 07:17:02 +0800

sitansu gravatar image sitansu
2254 13
http://java91.blogspot.in...

I use jboss server for zk to run. I use spring for login and bean injection. When i login i get following message on 

WARN  [SessionFixationProtectionStrategy] Your servlet container did not change the session ID when a new session was created. You will not be adequately protected against session-fixation attacks.

What is the problem ??

Please reply.

Thanks in advance.

delete flag offensive retag edit
Be the first one to answer this question!
Please start posting your answer anonymously - your answer will be saved within the current session and published after you log in or create a new account. Please try to give a substantial answer, for discussions, please use comments and please do remember to vote (after you log in)!

[hide preview]

Question tools

Follow
1 follower

RSS

Stats

Asked: 2014-03-27 06:57:39 +0800

Seen: 8 times

Last updated: Mar 27 '14

Related questions

where to put @Transactional (Hibernate Spring)

retriving Spring authentication provider Name dynamically in multiple authentication providers

OAuth and ZK

configuring authentication with jaas

zk with spring mvc

ZK Spring (ZK + Spring MVC) is RESTful?

ZK 7.0.3 Spring Security 4.0.2 CSRF

Popup message with Unknown exception: java.lang.NullPointerException. without strak trace in eclipse console

/zkau not loading with spring security 4

Issue fetching java parameter in zul

About Us | Faq | Help | Privacy Policy | Contact Us
Copyright Potix Corporation 2015.
Content on this site is licensed under a Creative Commons Attribution Share Alike 3.0 license.
Support Options
  • Email Support
  • Training
  • Consulting
  • Outsourcing
Learn More