Forum Discussion

Altocumulus

Sep 12, 2018

SEC7111 HTTP Security Compromised Generated by a JavaScript.

Hey everyone! I just ran into an issue that I haven't seen before. Let me give you some background: We have a backend web application running only on port 80 and publish this through a stan...

Nimbostratus

Sep 13, 2018

You could try the following: Apply a "stream" profile to your existing vs, and apply the following irule:

when HTTP_RESPONSE {
  if { HTTP::header value Content-Type] contains "application/json"} {
    STREAM::expression "@http://@https://@"
    STREAM::enable
  }
}

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

SEC7111 HTTP Security Compromised Generated by a JavaScript.

Recent Discussions

Problem with lets encrypt and redirect after update

Should config via cli rather than gui?

Is a Dedicated Interface, VLAN, and Self IP Required for a VIP in an F5 Configuration?

question about getting hsl data to be formatted properly in splunk

iRule for client certificate verification and inserting CN

Related Content

Inspecting a UCS file from a compromised BIG-IP

Javascript injecting systems effect on web application end users - a scenario review

Beware, your logs - how blocked log4shell, Spring4Shell etc requests can still lead to compromise

Control plane RCE are everywhere and CI/CD compromised Oct 23th–29th – F5SIRT This Week in Security

JavaScript Supply Chains, Magecart, and F5 XC Client-Side Defense (Demo)

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS