Forum Discussion

Nimbostratus

Jul 27, 2012

Modified Domain Cookies - Basic Rules

Hi All, I know there are tons of info on doman cookie modification . But basically needed to confirm this basic understanding :- 1) What are the different legitimate reasons t...

security

hoolio

Cirrostratus

Aug 01, 2012

Hi Nik,

With most web apps, there isn't a legitimate reason for the client modifying the cookie value. I don't think I've ever worked directly with such an app.

The most common reason the cookie changes is that the client makes a request to another app on the same domain not passing through the same ASM policy which modifies the cookie. Another common cause for the violation is that the ASM cookie is set with a different expiry than the app's cookie.

I'd try to reproduce the issue with a browser plugin like HttpFox or an interception proxy like burpsuite on the client. You could also check with your app developers to get more information on what you find.

Aaron

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

Modified Domain Cookies - Basic Rules

Jonathan - March 2026 Featured Member

F5 AppWorld 2026 Las Vegas - iRules Contest Winners!

2026 F5 DevCentral MVP Announcement

Recent Discussions

Recommendation for Adv. Lab

Unable to Forward APM and AFM Logs to AWS CloudWatch Using Telemetry Streaming

How to configure ssh access by key on F5OS

F5 BIG-IP DNS/Audit Logs — Structured Format for SIEM Ingestion

Bot Defense causing a lot of false positives

Related Content

modified domain cookies

Route Domains

Change cookie domain in HTTP::respond

Cookie-based DDoS protection

Encrypting Cookies

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS