Forum Discussion

Altocumulus

3 years ago

Solved

Handle False Positive for files upload

Hi folks, I'm wondering how to handle uploading files through XC. For example, I have a URL used for uploading files to a web application, say /upload. The files appear to be scanned by XC which d...

Sudhir_Patamsetti
3 years ago
Yes, the reocmmendation is to leave it "enabled" ( the feature is enabled in the default policy ).

Regarding the comment "lowered the level of protection against SQL Injection type attacks" , could you please open a support ticket with the details ? We will review and make improvements as needed to the model

AlsDevC

Altocumulus

3 years ago

Stephen,

Thanks for your quick feedback. Maybe I'm expressing myself badly. I know how to put an exception but I was hoping for another method than putting an exception for each matched signature.

BR.

Sudhir_Patamsetti
Ret. Employee
3 years ago
Can you share the "state" of those signatures , for that security event? You should find that in the information section. Ideally, these signatures should be "autosuppressed" by the "automatic attack signatures tuning" capability

Forum Discussion

Handle False Positive for files upload

Recent Discussions

Help Needed: Tracking Unreachable Traffic and Public IPs in F5 XC

Two load balancers with one public IP + two types of SSL certificates (custom and automatic)

Question about healthchecks

High Availability and Load Balancing for Single-Node CE with multiple ISP uplinks

CORS with API calls