For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

ITOPSNetwTeam_6's avatar
ITOPSNetwTeam_6
Icon for Nimbostratus rankNimbostratus
Nov 30, 2012

multipart/form-data

We have several applications which allow the customer to upload files (pdf, doc, ppt, ...) to our servers. Those uploads are performed by multipart/form-data POST requests.   Since a while w...
app sec
BIG-IP Access Policy Manager (APM)
security
Torti's avatar
Torti
Icon for Cirrus rankCirrus
Nov 30, 2012
Hi,

 

 

we hade have the same problems in the past. So we talked with f5 support.

 

The result is, you have to disable the detected generic signatures in the policy, if you have a file upload paramater.

 

At the moment, I select this ones: 200011004, 200011015, 200011016, 200011018, 200011019, 200011020, 200011023, 200011026

 

It doesn't depends on your parameter settings, because generic signatures are global policy signatures. You cannot disable them on parameter level.

 

Is it unsecure? I dont think so. Depending on your settings, you have so many active signatures...

 

 

regards