External links: » Session fixation
HTTP session management is the core of web security. All mitigations should be adopted to make sure sessions are secured. Developers should also enable/use applicable security measures.