Protecting Your Cookies: HttpOnly

Once again an example, that shows that you should never (ever!) use cookies to secure a site