Forum Discussion

Nimbostratus

Sep 06, 2012

ASM - 200001067 Attack Signature

Struggling to find info on this AS and wanted to know if it was safe to disable it on a parameter or if there is a better approach. I am on 10.2 thanks Lance

app sec

BIG-IP Access Policy Manager (APM)

security

Cory_50405

Noctilucent

Nov 28, 2012

We've disabled this attack signature for parameters across several security policies. The accuracy of the signature is low, so the false positive rate is high. I wouldn't necessarily disable it for every parameter or on every policy, but just do so on policies/parameters that are problematic.

Recent Discussions

F5 Access 3.1.0 for Android problem
Jan 14, 2025
f5kenta
iRule to Change Default Pool (not redirect to another pool)?
Jan 13, 2025
B_Biggs
What is the best practice for migrating from iseries to rseries?
Jan 13, 2025
Herman2024
iRule to Force Source IP to Specific Backend Node
Solved
Jan 13, 2025
Jison111
checking the fan status on the device.
Jan 13, 2025
Zen_Y

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

ASM - 200001067 Attack Signature

Recent Discussions

F5 Access 3.1.0 for Android problem

iRule to Change Default Pool (not redirect to another pool)?

What is the best practice for migrating from iseries to rseries?

iRule to Force Source IP to Specific Backend Node

checking the fan status on the device.

Related Content

Mitigating JSON-based SQL injection with BIG-IP ASM / Advanced WAF Attack Signatures

Wildcard Parameter signature attack

Live Update- ASM attack signatures

Attacks against Domain Specific Languages, EU Cybersecurity Laws, & Supply Chain Attacks

Default Attack Signature Sets

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS