Forum Discussion
Andreas_6066
Nimbostratus
Nov 11, 2013Fileupload blocked by ASM-policy
Hello,
we have a website for our customers to provide binary file upload. Sometimes this upload will be blocked by the security policy of this vip. The reason is for example a matching attack-signatu...
Andreas_6066
Nimbostratus
Nov 14, 2013Yes, that's a possible way. But this would deactivate this signature for the entire policy. The URL is the endpoint of an application and i couldn't manage to get "/file" to work as a Parameter. The ASM don't recognise any Parameter i have tried, although the Option "Handle Path Parameters" is set to "as Parameters". Even a Wildcard-Paramter for "/secure/customerarea/upload/*" with the Parametersetting "ignore value" didn't solve my Problem.
Deactivating the Attack Signature for "path traversal" won't be a good idea, i think.
Recent Discussions
Related Content
DevCentral Quicklinks
* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com
Discover DevCentral Connects