Thank you in advance for your input on my question here . I am currently running PHP 5.1.6 and would prefer to set both the secure and httpOnly flags for a session cookie, however, httpOnly is not added until PHP 5.2. I have found an elegant way to set it ( courtesy of : http://www.youtube.com/watch?v=UW0UhYfs1es ) but I am unable to set both the secure and the httpOnly flags. I realize the post is quite old, but doh!, so is my version of PHP J My guess is that if forced to choose, I should opt for secure but would prefer to do so with any opinions you may offer in mind. Thanks!! Jen
