For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

James_Dyson_470's avatar
James_Dyson_470
Icon for Nimbostratus rankNimbostratus
May 12, 2006

multiple rules / header info removing

Hi Guys,     I've got a build running production traffic that has just been pen tested and one of the complaints was the BigIP returning OS information in the header. (ver9.x)     I know ...
application delivery
dev
devops
iRules
Deb_Allen_18's avatar
Deb_Allen_18
Historic F5 Account
May 12, 2006
???

 

 

I've used this code and the resulting redirect response is a minimal but well-formed HTTP response without the offending headers:

 

HTTP/1.1 302 Found

 

Location: http://www.google.com

 

Connection: close

 

Content-Length: 0

 

tcpdump output, indicating appropriate CR/LF insertion:
0x0000   4500 0085 d468 4000 ff06 484f ac19 c32d                E....h@...HO...-
0x0010   c0a8 2ecb 1f90 074f a4f5 1b61 eea3 9967                .......O...a...g
0x0020   5018 111c 4aa1 0000 4854 5450 2f31 2e31                P...J...HTTP/1.1
0x0030   2033 3032 2046 6f75 6e64 0d0a 4c6f 6361                .302.Found..Loca
0x0040   7469 6f6e 3a20 6874 7470 3a2f 2f77 7777                tion:.http://www
0x0050   2e67 6f6f 676c 652e 636f 6d0d 0a43 6f6e                .google.com..Con
0x0060   6e65 6374 696f 6e3a 2063 6c6f 7365 0d0a                nection:.close..
0x0070   436f 6e74 656e 742d 4c65 6e67 7468 3a20                Content-Length:.
0x0080   300d 0a0d 0a                                           0....