Limit concurrent sessions plugin

  • Release version: Washingtondc
  • Updated February 1, 2024
  • 1 minute to read

    • Configure the com.glide.limit.concurrent.sessions plugin to reduce the chance of session hijacking on your instance.

    This plugin enables an administrator to limit the number of active sessions per user and or role. It is recommended that this plugin is enabled and configured to reduce the possibility of session hijacking. If this plugin is enabled and configured, then there will be a limit to the number of open sessions that can be hijacked.

    More information

    Attribute Description
    Configuration name com.glide.limit.concurrent.sessions
    Configuration type System Properties (/sys_properties_list.do)
    Data type plugin
    Recommended value com.glide.limit.concurrent.sessions enabled and configured
    Default value com.glide.limit.concurrent.sessions enabled and configured
    Category Session management
    Security risk
    • Severity score: 3.7
    • CVSS score: Low
    • Security risk details: If this plugin is not active, then there will be an increased chance for session hijacking.
    Dependencies and prerequisites None