Forum Discussion

Cirrus

Feb 06, 2023

F5 iRule for FormBased Credentials drop or rewrite

Hello, we have a WebService with a form based auth. there is a login for the user "sysadmin" I want to block the login in a from that he is telling the user the password is wrong. Because we can not...

Cirrus

Feb 21, 2023

Or I ask my question in other form: How can I remove characters from login password in F5 via iRule to a form based login page from an application, the reason is from outside we want to not give a hint that the sysadmin exists, so if come I from outside with the sysadmin the password should be changed to 000000 so that it is invalid, from inside should the user login be possible with the sysadmin ! I coud do to prevent the access based on the username sysadmin but after I check the username I have to make a decision "drop" or "reject" or "403" whatever.

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

F5 iRule for FormBased Credentials drop or rewrite

Recent Discussions

ip x-forwarding

ports are showing open on online scanning tool

Upgrade F5 BIGIP

DNS HM Probe issue

Is XFF a must for ASM WAF DoS

Related Content

OWASP Automated Threats - Credential Stuffing (OAT-008)

Leaked Credential Check with Advanced WAF

Creating a Credential in F5 Distributed Cloud for Azure

Removing F5 Leaked Credential Check (LCC) config from BIG-IP AWAF

XC - azure cloud Credentials issues

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS