Forum Discussion

MVP

Jun 07, 2012

ASM violation: Modified domain cookie(s)

im getting this violation, from the info provided by the ASM it seems to happen when the cookie is first set, am i correct on that? it feels like this is a quite common thing to happen, is it some you...

app sec

BIG-IP Access Policy Manager (APM)

security

boneyard

MVP

Jun 29, 2012

i understand the risks of clients changing a cookie, but apparently it also is a regularly used way to achieve certain functionality right?

so is there some way for me to determine what is expected to be fine or not? or will this require having full understanding of what the cookie is used for?

and one final question, does this really only trigger when the cookie is changed by the client not when the cookie is first set by the server and then returned by the client?

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

ASM violation: Modified domain cookie(s)

Recent Discussions

Reporting Help Needed

Switch ssl profile based on weak cipher detection via IRULE

F5 looses the token for the first call

iRule - Url rewrite and header replace and pool selection not working

full-proxy HTTP2

Related Content

iRule to modify a content-security-policy header

Rate limiting GraphQL API query using iRule and Advanced WAF Violation

modified domain cookies

Samesite cookies on 1600's

Separating False Positives from Legitimate Violations

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS