Hi again.

I would like to ask you if someone could help me with this.

If I want to check cookie content, where mod_security phase should I check?

I found rules that match with 2 phase but I have seen some http responses with set-cookie field, so Im not to sure where to place it.

Kind regards,