Demeter_Luo_168NimbostratusSep 18, 2016ASM: How to protection of session hijacking, What is principle?Hi Dear All How to protection of “session hijacking” use ASM, What is principle? Many Thanks D.Luo
2 RepliesReplies sorted by NewestSort ByMost LikedOldestNewestTom_JurakNimbostratusFeb 26, 2019Hi there, yes, it can affect users. Clients without Java script will be blocked. Be aware e.g. with COMPREHENSIVE policy even in transparent mode. Tom samstepCirrocumulusSep 19, 2016Session Hijacking protection is described in the ASM Implementation manual here: https://support.f5.com/kb/en-us/products/big-ip_asm/manuals/product/asm-implementations-12-1-0/15.html Hope this helps, Sam
Tom_JurakNimbostratusFeb 26, 2019Hi there, yes, it can affect users. Clients without Java script will be blocked. Be aware e.g. with COMPREHENSIVE policy even in transparent mode. Tom
samstepCirrocumulusSep 19, 2016Session Hijacking protection is described in the ASM Implementation manual here: https://support.f5.com/kb/en-us/products/big-ip_asm/manuals/product/asm-implementations-12-1-0/15.html Hope this helps, Sam
Recent DiscussionsI cannot activate the license on BIG-IP-NEXTIssue with Capturing SYN-ACK Packets on F5 BigIP Virtual Server[APM] URL stops working , location : /my.policy?ORG_URI=1f931c35When POST request access policy is used, it is not forwarded to the server behind.LB_FAILED test event
Related ContentBeyond REST: Protecting GraphQLL7 DoS Protection with NGINX App Protect DoSManaging NGINX App Protect WAF for BeginnersF5 Distributed Cloud Bot Defense Protecting AWS CloudFront DistributionsCookie-based DDoS protection