For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

ramann_75062's avatar
ramann_75062
Icon for Nimbostratus rankNimbostratus
Jul 13, 2009

Disable CC data for POST requests

Hi @all,     its me again :-)     Today, i am looking for a way to deactivate the CC check only for POST requests - is this possible?     My first idea was, to do this...
app sec
BIG-IP Access Policy Manager (APM)
security
hoolio's avatar
hoolio
Icon for Cirrostratus rankCirrostratus
Jul 15, 2009
Hi Bjoern,

 

 

I can't really see the value in only applying the attack signature to response content for non-POST requests. Chances are the only vulnerability within an application which would lead to credit cards being leaked in response content would be from POST requests. So why would you want to disable the check for POST requests and not all requests?

 

 

If you do want to do this an iRule and second policy would be an option. You could use the 'HTTP::class select' command (Click here) to select a second HTTP class for POST requests. Note the second HTTP class must also be added to the virtual server in order to select it using HTTP::class. Selecting a second virtual server would work, but unnecessarily add the need for a second virtual server.

 

 

Aaron