Forum Discussion
SamiK_85475
Nimbostratus
NimbostratusASM 10.2 rel.notes - Cookie internal parameters added (CR131850)
Hi,
would someone know how turn these new internal parameters on?
Thanks,
Sami
http://support.f5.com/kb/en-us/products/big-ip_asm/releasenotes/product/relnotes_asm_10_2_0.html
Fixes in this release This release includes the following fixes.
Cookie internal parameters added (CR131850) There are two more internal parameters, not available in the Configuration utility.
• Cookie_secure_attr: Cookie secure special attribute. If you set this parameter’s value to 1, the system adds a secure attribute to each Application Security Manager cookie in the response. The system adds the secure attribute only when the traffic protocol is HTTPS. This prevents the network from sniffing the cookie. The parameter’s default value is 0 (false).
• Cookie_httponly_attr: Cookie HTTPOnly special attribute. If you set this parameter’s value to 1, the system adds the HTTPOnly attribute to each Application Security Manager cookie in the response. This instructs the browser to restrict JavaScript access to that cookie. This mitigates the risk of someone picking up that cookie using XSS. The parameter’s default value is 0 (false).
- To add and change the default settings of these parameters, open the command line, and use the add_del_internal script, in the following format:
/usr/share/ts/bin/add_del_internal add param_name param_value
To delete an internal parameter from your configuration, from the command line, enter the following command:
/usr/share/ts/bin/add_del_internal del param_name
After adding or deleting an internal parameter, you must enter and run the command bigstart restart asm in order for the changes to take effect.
