Forum Discussion

Nimbostratus

Nov 09, 2010

Replay Attack prevention for HTTP Post of Auth details

Hi, I have an application (let's call it website 1) which users log into using a username and password. Once logged in the app sends back a simple landing page with some links, and in hidden fields it...

Admin

Nov 10, 2010

quick question...how deep into the payload is the username/password, and is its location consistent? Also, does the POST need to occur more than once?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

Replay Attack prevention for HTTP Post of Auth details

Jonathan - March 2026 Featured Member

F5 AppWorld 2026 Las Vegas - iRules Contest Winners!

2026 F5 DevCentral MVP Announcement

Recent Discussions

GRPC through F5 Virtual Server [RST_STREAM with error code: INTERNAL_ERROR]

[ASM] - How to disable the SQL injection attack signatures

[ASM] : SQL-INJ "end-quote UNION" - How to allow this signature to specific url/uri/parameter only

Changes to DO and AS3 GitHub - no longer monitored

[ASM] : "Request length exceeds defined buffer size " - How to increase the limit ?

Related Content

ASN Details

APM-DHCP Access Policy Example and Detailed Instructions

Operationlizing Online Fraud Detection, Prevention, and Response

F5 ASM/AWAF Preventing unauthorized users accessing admin path using iRule script

Guarding Large Language Models: Advanced Approaches to Preventing Model Theft

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS