Forum Discussion

Nimbostratus

Oct 16, 2009

remove CFID value from header

Hello, in a security audit we are trying to remove or remove the Set-Cookie CFID value from HTTP::response for a security audit here is the header HTTP/1.1·200·OK...

Cirrostratus

Oct 16, 2009

That would encrypt the value--not remove it. But that is a good idea if you're trying to prevent someone from tampering with the cookie value.

Aaron

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

remove CFID value from header

Introducing the F5 Application Study Tool (AST)

Displaying Application Study Tool (AST) Dashboards in Your Own Grafana Instance

Recent Discussions

Terraform apply failures - loadbalancer_type.https.port_choice

Problem with sending BotDefense logs to remote server

adding second hard drive to a VE

File dowloaded is corrupted

BIGIP only stacks about 5000 ASM logs.

Related Content

Remove X- Headers From Web Server Response

Remove the "Server" header

Removing x-frame-options header from response when using APM

HTTPS Routing based on Client Certificates values with F5 Distributed Cloud

ASM irule to disable attack signature authorization header with specific value

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS