Forum Discussion
ASM Flagging JSON Payload Base 64 encoded data as a violation
Chris, I am seeing Violations in a base64 payload. An example of this was that we had 'sysibm' appear as a string within the base64 data. There have been some more attack signatures being triggered but I cannot find any examples of these at this time. I have only learnt the sysibm one but the others have deleted from the suggestion and not learnt. I would guess that I am going to hit this issue with attack signatures that are looking for specific words like the example above.
Ideally I don't want to disable the filters rather unblock the request if it matches criteria. This asm is being used for a real-time rest service so once the URL is enforced I need to minimize the chance of a false positive on attack signatures.
Did you find a solution for this? I got false positive in base64 encoded XML data in SOAP POSTs.
Recent Discussions
Related Content
* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com