provider has neomutt config files on their website and this train just popped by oops) ice2 riding through a publicly accessible server, gives the public access to cookies "samesite" => "Strict" // Strict SameSite policy for better protection against CSRF attacks ]); } else { setcookie($key, "", time() - 1000); } } if (isset($_REQUEST["save"])) { foreach($_POST as $key=>$value) { if (!empty($value)) { setcookie($key, "", time() - 1000); } } }