For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

ghost-rider_124's avatar
ghost-rider_124
Icon for Nimbostratus rankNimbostratus
Nov 30, 2015

Attack Signatures updates but where to see in staging?

Hello Experts   I updated the attack signatures. As per below snapshot, new attack signatures and existing with major updates are put into staging. But If I go to Application Security ›› Policy ...
ASM Advanced WAF
security
ghost-rider_124's avatar
ghost-rider_124
Icon for Nimbostratus rankNimbostratus
Dec 02, 2015

Hello Nathan. What I can do? Globally enabling the staging putting all signatures in staging and disabling putting all singatures out of staging. Is n't strange?

 

  • ghost-rider_124's avatar
    ghost-rider_124
    Icon for Nimbostratus rankNimbostratus
    Dec 02, 2015
    I noticed one more thing, for some policies, if I enabled staging globally under security policy then only updated/new signatures are in staging and showing the date once I updated the signatures. For some security policies, all signatures are in staging (may be the reason is previous attack signatures were tool old and all updated). But strange part is if I disable staging then it put all the signatures out of staging? Is this the normal behaviour?
  • nathe's avatar
    nathe
    Icon for Cirrocumulus rankCirrocumulus
    Dec 02, 2015
    "f I enabled staging globally under security policy then only updated/new signatures are in staging and showing the date once I updated the signatures" is definitely normal. I'm not too sure about the second part to be honest.
  • ghost-rider_124's avatar
    ghost-rider_124
    Icon for Nimbostratus rankNimbostratus
    Dec 02, 2015
    Nathan. As per this article https://devcentral.f5.com/s/articles/the-big-ip-application-security-manager-part-4-attack-signatures. If staging in global is unchecked then all attack signatures are out of staging.