For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Increased Security With First Party Cookies

HTTP cookies are an essential part of many web based applications, useful for tracking session and state information.  But they can also be exploited to leak information to third party sites using a ...
Published Mar 30, 2018
Version 1.0
cookie
iRules
LTM
samesite
security
DannyG's avatar
DannyG
Icon for Nimbostratus rankNimbostratus
Feb 03, 2020

We seem to be successful modifying the bigipserver persistence cookie just fine in the HTTP_RESPONSE. It seems HTTP_RESPONSE_RELEASE is needed if you are using ASM or some other module that is making modifications.