For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

Anthony_Pineda's avatar
Anthony_Pineda
Icon for Nimbostratus rankNimbostratus
Jul 20, 2016

Hi jerm1020. I'm not a crypto expert but let me take a stab at this. The passphrase may be used by the F5 AES process to do a mathematical computation like XOR to come up with the encrypted value for your cookie. You don't give this out to user because it is used by F5 appliance. There is no other configuration on other devices as far as I'm concerned.

 

  • ekaleido's avatar
    ekaleido
    Icon for Cirrus rankCirrus
    Jul 20, 2016

    Yeah. It's just the key used to encrypt the cookie. Otherwise the cookie will contain data related to your virtual server's name and the IP(s) of the pool member(s).