Set Samesite=Strict for PHP session cookie. The cookie is set manually to be backwards compatible with versions below PHP7.3

Signed-off-by: DL6ER <dl6er@dl6er.de>

scripts/pi-hole/php/password.php

@@ -9,13 +9,8 @@
 
 require_once 'func.php';
 
-// Prevents javascript XSS attacks aimed to steal the session ID
-ini_set('session.cookie_httponly', 1);
-// Prevent Session ID from being passed through URLs
-ini_set('session.use_only_cookies', 1);
-
 // Start a new PHP session (or continue an existing one)
-session_start();
+start_php_session();
 
 // Read setupVars.conf file
 $setupVars = parse_ini_file('/etc/pihole/setupVars.conf');