Forum Discussion
Kenta_Ogasawara
Nimbostratus
Jul 20, 2015String sanitization in LTM
Hello,
I'm using BIG-IP LTM v11.5.1 now.
I want to sanitize the string that is included in the request from client.
(e.g. "<" -> "<", ">" -> ">"...)
Q.Please tell me if you know h...
Kevin_Stewart
Employee
Jul 21, 2015I agree that it can get challenging, but definitely not impossible.
when HTTP_REQUEST {
HTTP::uri [string map {"<" "<" ">" ">"} [HTTP::uri]]
}
The [string map ] function here replaces the special characters in the HTTP uri. You can extend this to include more characters and HTTP header and payload data. If you're worried about attacks though, you'd be far better off enabling a web application firewall like ASM.
Help guide the future of your DevCentral Community!
What tools do you use to collaborate? (1min - anonymous)Recent Discussions
Related Content
DevCentral Quicklinks
* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com
Discover DevCentral Connects