Need a irule which can remove ETAG information from the site

Question

Hi Guys,

I am not that expert in writing irule, was googling for a specific issue and came across this forum, so thought I can get some help from you guys.
Here is my question, we found a vulnerability that Etag information is disclosed in the site, which is what we do not want as per our security policies. I had applied the fix to the web servers and no longer see when we hit the web server directly. But we still see the vulnerability when hitting the Load Balancer.. so thought we might need a irule which can mask the ETAG information.

After some googling I saw an irule can be used to specifically say what headers need to be visible to the site .. so I think it is also possible to specify what not to show.

http://devcentral.f5.com/wiki/default.aspx/iRules/ServerResourceCloaking.html

Please help me...

-Rajesh

rajesh_74831 · Answer

I think I was able to get it ...following is the Irule used to mask the etag in the site.

when HTTP_RESPONSE {
HTTP::header remove "Etag"
}

Forum Discussion

Need a irule which can remove ETAG information from the site

Recent Discussions

F5 LTM listening on 3306

SNI Sites not taking correct certificate.

How to implement LTM forward proxy client to determine the diversion pool based on the domain name

irule to enable http/2 acceleration

VS FORWARDING & ROUTE

Related Content

External Monitor Information and Templates

iRule to Remove Duplicate Header by Value

Mitigate OWASP LLM Security Risk: Sensitive Information Disclosure Using F5 NGINX App Protect

Find CVE information on AskF5

Rapid iRule Removal via Tmsh Script

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS