flomkrl_29950
Nov 27, 2008Nimbostratus
Cookie steal risk ?
Hello,
If an other user catch the BIGIP cookie, is it able to access to the application without authentification ? , i'm refering to IRULE ClientAuthUsingHTMLForms (http://devcentral.f5.com/wiki/default.aspx/iRules/ClientAuthUsingHTMLForms.html)
Or does the authid include source client ip&port info ?
Thanks for your explanation ,
Regards,
flo