From 509459fa0d2e2c49f2d133f02469e5d6e900e7b9 Mon Sep 17 00:00:00 2001
From: Daniel Winzen <daniel@danwin1210.de>
Date: Fri, 4 Nov 2022 15:47:04 +0100
Subject: [PATCH] PHP session hardening

---
 var/www/common.php | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/var/www/common.php b/var/www/common.php
index 19100e3..8edd582 100644
--- a/var/www/common.php
+++ b/var/www/common.php
@@ -56,6 +56,8 @@ opcache.optimization_level = 0x7fffffff
 opcache.validate_permission = 1
 opcache.validate_root = 1
 opcache.jit_buffer_size = 64M
+session.cookie_httponly = 1
+session.cookie_samesite = "Strict"
 session.use_strict_mode = 1
 session.serialize_handler=igbinary
 apc.serializer=igbinary