Can you rename the TS cookie used with ASM?

Question

Can you rename the TS cookie used with ASM?&nbsp;

samstep · Answer

ASM does not have the ability to rename the built-in TS cookies. &nbsp;
Why do you want to do it? To hide that you are using ASM? This is only a "security by obscurity" and will not make more secure. Attackers can always fingerprint BIG-IPs and figure out that you have ASM protection based on getting a blocking page response on some generic signature.&nbsp;

samstep · Answer

I doubt that PCI-DSS will give you any trouble for the fact that you can prove that you have a WAF :) on more serious note though what the auditors would look for is patching level. There have been several security vulnerabilities in F5 products in the past few months, so make sure you have the latest Hotfixes.&nbsp;
Here is a handy link listing all F5 vulnerabilities (CVEs) in 2016:&nbsp;
F5 CVE Details&nbsp;

Forum Discussion

Can you rename the TS cookie used with ASM?

2 Replies

Recent Discussions

F5 VE in Azure - troubles with Sentinel integration

Need help on i-rule to specific uri path

Stable Firmware for F5

BigIP Next - Health Monitors / Template

LDAPS and renegotiation

Related Content

Cookie Tampering Protection using F5 Distributed Cloud Platform

Cookie-based DDoS protection

Decoding the IPv4 address from the persistence cookie

2. SYN Cookie: Operation

Client Auth Using HTTP Cookie