Forum Discussion

Nimbostratus

Nov 27, 2008

Cookie steal risk ?

Hello, If an other user catch the BIGIP cookie, is it able to access to the application without authentification ? , i'm refering to IRULE ClientAuthUsingHTMLForms (http://devcentral.f5...

config

design

flomkrl_29950

Nimbostratus

Dec 04, 2008

Is there any way to make this cookie secure ?

-some suggestion : add source ip on cookie information

Thxs;

Flo

Help guide the future of your DevCentral Community!

What tools do you use to collaborate? (1min - anonymous)

Bram - January 2026 Featured Member

DevCentral News

announcement

event

F5 Container Ingress Services (CIS) and using k8s traffic policies to send traffic directly to pods

Community Articles

application delivery

CIS

container ingress services

devops

Gateway Fabric

F5 Architecture Track Sessions - AppWorld 2026

DevCentral News

announcement

Appworld2026

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

F5 is upgrading its customer support chat feature on My.F5.com. Chat support will be unavailable from 6am-10am PST on 1/20/26. Refer to K000159584 for details.

Forum Discussion

Cookie steal risk ?

Bram - January 2026 Featured Member

F5 Container Ingress Services (CIS) and using k8s traffic policies to send traffic directly to pods

F5 Architecture Track Sessions - AppWorld 2026

Recent Discussions

Single LTM with multiple GTM domains

irule execution error

Issue with TLS Version 1.1 Deprecated Protocol

can't access on prem dns when using F5LTM as a gateway

Adding logging to APM per-request policy without SWG license

Related Content

Mitigating OWASP API Security risks using BIG-IP

Mitigating OWASP API Security Risks: Broken Authentication using BIG-IP

Mitigating OWASP API Security Top 10 Risks – 2023 using F5 BIG-IP

Mitigating OWASP API Security Risk: BOPLA using F5 BIG-IP

Mitigating OWASP API Security Risk: Mass Assignment using F5 BIG-IP

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS