Asm doubt

Question

What is the best practice ?&nbsp;
Adding all parameters for application and removing the wildcard parameter from staging and keeping all in enforcement mode ?&nbsp;
Or to keep a hybrid model, adding required parameter and putting them in enforcement mode and keep wildcard parameter in staging ?&nbsp;

samstep · Answer

It depends on your application and its size. Generally speaking you want a tight policy which will ensure maximum protection against attacks. If staging is enabled many attacks will not be blocked! If your application is small-medium then yes, you should whitelist all parameters an enforce everything. This is provided your application never or rarely changes (e.g. OWA, Oracle appls etc). If you are protecting an "agile" application which changes weekly and maybe even daily then hybrid approach is needed

Forum Discussion

Asm doubt

Recent Discussions

Can you set Kerberos AAA server via session variable?

HTML Code injection Not detected by ASM

What will be happen to live and existing connections when failover HA BIG IP active-standby

SSL Offload and remove FQDN

High CPU utilization (100%).

Related Content

ASM/WAF Management Automation - TMOS

ASM logs

ASM LOGS

File Uploads and ASM

File upload and ASM

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS