I am trying to implement cookie integrity on a site. I have renamed our custom cookies and standard ASP.NET cookies. Is it possible to rename standard Episerver cookies? The cookies i see are "EPi_NumberOfVisits", "__epiXSRF" and "livemonitorUserId". These cookies already have the Secure flag to prevent attackers from reading them, but their names do not start with "__Host-" or "__Secure-" to prevent attackers from writing them. Is there a way to rename these?
I am trying to implement cookie integrity on a site. I have renamed our custom cookies and standard ASP.NET cookies. Is it possible to rename standard Episerver cookies? The cookies i see are "EPi_NumberOfVisits", "__epiXSRF" and "livemonitorUserId". These cookies already have the Secure flag to prevent attackers from reading them, but their names do not start with "__Host-" or "__Secure-" to prevent attackers from writing them. Is there a way to rename these?