Forum Discussion

MVP

Jun 07, 2012

ASM violation: Modified domain cookie(s)

im getting this violation, from the info provided by the ASM it seems to happen when the cookie is first set, am i correct on that? it feels like this is a quite common thing to happen, is it some you...

app sec

BIG-IP Access Policy Manager (APM)

security

boneyard

MVP

Jun 29, 2012

i understand the risks of clients changing a cookie, but apparently it also is a regularly used way to achieve certain functionality right?

so is there some way for me to determine what is expected to be fine or not? or will this require having full understanding of what the cookie is used for?

and one final question, does this really only trigger when the cookie is changed by the client not when the cookie is first set by the server and then returned by the client?

Help guide the future of your DevCentral Community!

What tools do you use to collaborate? (1min - anonymous)

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

ASM violation: Modified domain cookie(s)

F5 Academy at AppWorld 2026

Introducing the F5 AI Assistant for BIG-IP

Recent Discussions

How can I get started with iCall

Connection Rest f5

Kubernetes cert-manager + LetsEncrypt + F5

The GSLB pool is providing an incorrect IP to end users

Unable to ping from some self ip on Velos

Related Content

iRule to modify a content-security-policy header

Separating False Positives from Legitimate Violations

Samesite cookies on 1600's

modified domain cookies

Rate limiting GraphQL API query using iRule and Advanced WAF Violation

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS