Forum Discussion
DrewW
Nimbostratus
May 12, 2020Header name with no header value
Hi,
We had to create a new App Security policy because technical support couldn't tell us why our old one wasn't doing anything after several days of working with them.
I am seeing some events for a rule that says: 'Header name with no header value'
Basically the request looks like this:
Cache-Control: max-age=88544
Connection: keep-alive
Accept: text/css,*/*;q=0.1
From:
User-Agent: AdsBot-Google (+http://www.google.com/adsbot.html)
I'm not entirely certain how this poses a risk and it seems like it's blocking Google from crawling our website which makes it suboptimal. Are there a list of things that F5 thinks are security issues that just break your website that you have to disable?
Recent Discussions
DevCentral Quicklinks
* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com
Discover DevCentral Connects