Default cookie setting: SameSite=Lax

Version 1.62.0

Feature
Finished

New cookie flag, enabled by default: SameSite=Lax current versions of Chrome and Firefox would already set this internally without specifying it, but this would be for: - older browsers - clarify into it's effect - help prevent CSRF attacks for unknown cases The internal directadmin.conf setting would be: cookie_samesite=Lax Where you can set it to "Strict" if you wish. Should you need to disable the setting entirely, set it to a empty/blank value, eg: ./directadmin set cookie_samesite '' service directadmin restart (value is 2 single quotes)

Interested to try DirectAdmin? Get a 30-day Free Trial!