2921169 - Clarification on PortalAlias cookie path set to root '/'

Symptom

Clarification is needed on the fact that path of PortalAlias is set to root "/".

Cookie: PortalAlias=portal; Path=/

Environment

NetWeaver Application Server Java
Enterprise Portal

Product

SAP NetWeaver 7.3 ; SAP NetWeaver 7.4 ; SAP NetWeaver 7.5 ; SAP enhancement package 1 for SAP NetWeaver 7.3

Keywords

Portal Alias PortalAlias cookie security report breach Vulnerability root path hostname server whole server level Insecure configuration used for Session Cookies insecure manner by the web application , KBA , EP-PIN-PRT , Portal Runtime , Problem

About this page

This is a preview of a SAP Knowledge Base Article. Click more to access the full version on SAP for Me (Login required).

Search for additional results

Visit SAP Support Portal's SAP Notes and KBA Search.