Mar 27, 2026 - For details about updated CVE-2025-53521 (BIG-IP APM vulnerability), refer to K000156741.

Forum Discussion

Icon for Nimbostratus rank

Nimbostratus

Apr 25, 2017

Avoid Copy/Paste cookies for login

We have a DNN implementation and we have discovered that we can copy the authentication cookies and paste them in another computer to allow the user get in, I am looking if there is a way to validate cookies on this scenario

1 Reply

Nicholas_P__308
Cirrus
Apr 25, 2017
There is an HMAC irule. Please see the following.

https://devcentral.f5.com/codeshare/high-performance-hmac-cookie-signing

Basically, it generates a random string for each new session paired with the authentication cookie and validates each user with minimum performance impact.

Jeff - May 2026 Featured F5er

DevCentral News

series-devcentral-featured-members

AppWorld Berlin 2026 – iRules Contest Winning Results

DevCentral News

One Quick Step to Make your website AI-Agent/MCP Ready with an iRule

Technical Articles

application delivery

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5