Forum Discussion

Nimbostratus

Aug 03, 2016

Attack signature updates.

can anyone confirm best practices for Attack Signature updates? I would like to know if when working with a production environment if it would be safer to implement in the below stated layout as oppo...

MVP

Aug 03, 2016

false positives with (attack) signatures is an issue with any type of device, a WAF like the ASM module or a firewall IPS module. be honest against your customer and explain that some requests might be blocked which were no attacks. if you want security and use attack signatures you will need to accept that.

but you can make the risk smaller as explained by Jinshum, of course putting them trough testing is nicer, but can you test well enough?

Forum Discussion

Attack signature updates.

Recent Discussions

Attack Analysis- ASM

Query a pool according to the hostname without opening the encryption

EC certificate breaks remote desktop

Question the failover status of a device

Force peer to standby using Ansible!?

Related Content

Live Update- ASM attack signatures

Mitigating JSON-based SQL injection with BIG-IP ASM / Advanced WAF Attack Signatures

Are ASM Attack Signature Updates Cummulative?

Wildcard Parameter signature attack

The HTTP/2 CONTINUATION frame attack