For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

Demeter_Luo_168

Icon for Nimbostratus rank

Nimbostratus

Sep 18, 2016

ASM: How to protection of session hijacking, What is principle?

Hi Dear All

How to protection of “session hijacking” use ASM, What is principle?

Many Thanks D.Luo

ASM Advanced WAF

asm application security manager

2 Replies

Tom_Jurak
Nimbostratus
Feb 26, 2019
Hi there,

yes, it can affect users. Clients without Java script will be blocked. Be aware e.g. with COMPREHENSIVE policy even in transparent mode.

Tom
samstep
Cirrocumulus
Sep 19, 2016
Session Hijacking protection is described in the ASM Implementation manual here:

https://support.f5.com/kb/en-us/products/big-ip_asm/manuals/product/asm-implementations-12-1-0/15.html

Hope this helps,

Sam

Security Best Practices for F5 Products

Technical Articles

F5 AppWorld 2026 Registration - early bird pricing.

DevCentral News

Kostas Injeyan - October 2025 Featured Member

DevCentral News

featured member

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5