Forum Discussion

Nimbostratus

Jun 22, 2011

Best way to clean up HTTP headers, sanitize or Response Headers Allowed?

I want to remove a bunch of the IIS headers that don't need to be shared, what is the better way to do it? Use the sanitize function in an Irule? Or in the HTTP profile use the...

app sec

BIG-IP Access Policy Manager (APM)

security

Nick_T_68319

Nimbostratus

Jun 23, 2011

Posted By hoolio on 06/22/2011 10:07 PM Perfect, that's what I was hoping for. Plus it's much easier to apply the response headers allowed globally in my environment :) Hi Nick,

In general if you can use default configuration options it will be more efficient than an iRule. I'd try the HTTP profile option for Response Headers Allowed to do this. It's a bit more clear of a solution as well as the HTTP::header sanitize function allows some headers but not all essential ones. With the HTTP profile, you'll see exactly which ones are allowed as they all need to be enumerated.

Aaron

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

Best way to clean up HTTP headers, sanitize or Response Headers Allowed?

Recent Discussions

self-directed requests fail because of no certificate

Decode ObjectSID from Base64-encode string

iRule - Url rewrite and header replace and pool selection not working

ip x-forwarding

F5 ASM API-Protection Policy

Related Content

Introduction of Incident Response

Remove X- Headers From Web Server Response

(HTTP) Redirection via Arbitrary Host Header

Sanitize special characters in AD groups names

Inserting a http header on the response to the client

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS