How to block exe-File - uploads with extension unlike exe

Question

It seems that ASM allows the upload of executables whose extension was changed from .exe to something different. If the extension is .exe, the request gets blocked as expected.&nbsp;
Configuration:
The the parameter was explicit declared as FileUplod - Type with the option enabled 'Disallow File Upload of Executables'. Furthermore the corresponding Learning and Blocking Setting: 'Disallowed file upload content detected' was also set to Learn / Alarm / Block. &nbsp;

stanislas_piro2 · Answer

ASM doesn't detect file type upload. it can only detect extension.&nbsp;
If you want content analysis, you can configure ASM (or LTM) to forward HTTP requests to an ICAP server (all antivirus vendors provide such solution as an add-on license).&nbsp;

Forum Discussion

How to block exe-File - uploads with extension unlike exe

Recent Discussions

Background Tasks

APM with EntraID as idP / request signed

Should config via cli rather than gui?

APM Modern Customization - modify Header in user-common.js and form in user-logon.js

Which process is consuming higher CPU

Related Content

WAF - Allow uploads of only files with certain extensions and block all other file uploads

F5 CIS, TLS Extensions, and troubleshooting

F5 Cloud Failover Extension (CFE), private endpoints, and custom DNS

File Uploads and ASM

File upload and ASM

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS