Forum Discussion

Nimbostratus

May 15, 2012

Cookie security - Encryption vs Secure+HttpOnly

Howdy, We're currently running a tweak version of the rule here https://devcentral.f5.com/weblogs/J...style.aspx on our 10.2 LTM's. it doesn't work well and has never been well integrated in...

app sec

BIG-IP Access Policy Manager (APM)

security

hoolio

Cirrostratus

Jun 01, 2012

By the way, there's an RFE (BZ227347) for adding more native options for setting the HttpOnly and secure flags for cookies being sent in a response. Adding more cases to the request will help raise the visibility of the request.

Aaron

Help guide the future of your DevCentral Community!

What tools do you use to collaborate? (1min - anonymous)

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

Cookie security - Encryption vs Secure+HttpOnly

F5 Academy at AppWorld 2026

Introducing the F5 AI Assistant for BIG-IP

Recent Discussions

SSL Bridging and FQDN rewrite Policy

After upgrading from PeopleTools 8.59.11 to 8.61.11 F5 APM is not rewriting the internal URLs

Could not communicate with the system. Try to reload page.

F5 BIG IP laboratory license

F5 mssql health monitor failing

Related Content

Decrypt, Encrypt, Decrypt, Encrypt, Encrypt....

Let's Encrypt

Quarterly Security Notification October 2025

Automate Let's Encrypt Certificates on BIG-IP

Encrypted UCS Backup with REST-API

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS