Forum Discussion

Icon for Altostratus rank

Altostratus

Feb 20, 2016

Pacifying parameter input

Hi;

If I wanted to pacify a script input in a paramter like

ASM Advanced WAF

1 Reply

samstep
Cirrocumulus
Feb 22, 2016
You can't do this in ASM, ASM is a Web Application Firewall. It can DETECT , ALARM and BLOCK the the malicious parameter input like < script >, but it will not sanitize it. You will need to write an LTM iRule for content modification/sanitization, however beware that potentially you will be allowing malicious input anyway. Stripping HTML tags is not enough to stop the attack. The correct way of fixing this is to fix your application, so speak to your developers first.

Help guide the future of your DevCentral Community!

What tools do you use to collaborate? (1min - anonymous)

F5 Container Ingress Services (CIS) and using k8s traffic policies to send traffic directly to pods

Community Articles

application delivery

container ingress services

F5 Architecture Track Sessions - AppWorld 2026

DevCentral News

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5