Forum Discussion

Nacreous

Oct 18, 2022

All attack signatures vs server/application specific ASM attack signatures

Hi, as per everyone's experience, what's best to select attack signatures for a WAF policy? I'm aware that all attack signatures might have some downside (latency, resources issue) but isn't it goo...

Security

waf

buulam

Admin

Oct 27, 2022

I can see your point but one thing I'd consider is that you can potentially (actually probably) open yourself up for a lot of false positives. To the point where if an attacker knows this is the case, they could fill your logs with false positives, while burying actual attack attempts. Sure - you could filter that out but then why have that in the first place? Those are my views at least. Good topic!

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

All attack signatures vs server/application specific ASM attack signatures

Recent Discussions

Reclaim disk space for BIG-IP tenants running on rSeries systems

Troubleshooting SSL Connections

SF GS see the attached document for your email and

De do please let me know when the ft ye so I

DIGI FINANCE LOAN APP CUSTOMER CARE HELPLINE NUMBER+91)// 8585057116-√72-68-93-71-35call

Related Content

Support of WAF Signature Staging in F5 Distributed Cloud (XC)

Mitigating JSON-based SQL injection with BIG-IP ASM / Advanced WAF Attack Signatures

BoT Defense Profile, Signature Enforcement

Wildcard Parameter signature attack

Live Update- ASM attack signatures

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS