Forum Discussion
AltostratusIs there an attack signature for a poodle attack in the ASM?
Is there an attack signature for a poodle attack in the ASM?
Hi,
ASM take care of HTTP traffic only. Poodle is related to ASM, you can mitigate it by removing SSLv3 on your Client SSL profile. You can also use an irule to refuse connection from clients that negociate SSLv3.
Here is a good article for poodle : https://network-maven.com/2014/10/22/f5-poodle-vulnerability/
4 Replies
Yann_Desmarest_Nacreous
Hi,
ASM take care of HTTP traffic only. Poodle is related to ASM, you can mitigate it by removing SSLv3 on your Client SSL profile. You can also use an irule to refuse connection from clients that negociate SSLv3.
Here is a good article for poodle : https://network-maven.com/2014/10/22/f5-poodle-vulnerability/
Wasfi_182818Thank you Yann.
Yann_DesmarestCirrus
Hi,
ASM take care of HTTP traffic only. Poodle is related to ASM, you can mitigate it by removing SSLv3 on your Client SSL profile. You can also use an irule to refuse connection from clients that negociate SSLv3.
Here is a good article for poodle : https://network-maven.com/2014/10/22/f5-poodle-vulnerability/
- Wasfi_182818Thank you Yann.
