Forum Discussion

Nimbostratus

Mar 13, 2017

Can I allow Buffer Overflow attack signatures in just an XML request?

The website has an upload page where people can submit receipts. The request looks like this: 4AAQSkD6RXhpZgAuocAAcAAAgMAAAAPgAAAAAc6gAAAAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA...

Altostratus

Mar 13, 2017

You can create an XML content profile, disable the attack signature in it and then assign the profile to a URL in your security policy.

You didn't say what version you are running. Here is some info for version 12.0. The config is basically the same for other versions:

Fine-tuning Advanced XML Security Policy Settings

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

Can I allow Buffer Overflow attack signatures in just an XML request?

Recent Discussions

Which process is consuming higher CPU

F5 Health Monitor Receive String as JSON

Background Tasks

SSL bridging without SSL proxy forward

Big-IP VE edition for MacBook M4 Chip

Related Content

attack Signature detected but i can not find keyword inside request

Customized Bot Signature not working

Default Attack Signature Sets

Logging of DNS Requests and Responses without a DNS license

Monitoring Failure OAuth request

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS