Forum Discussion

field_bad_service's avatar
Dec 12, 2023

Support Variables for ASM

This variable shows the Support ID which helps us find logs more easily when troubleshooting <%TS.request.ID()%>.

However, when exposed on a Response Block Page, it is easy to identify that it is a BigIP system protecting the environment, making the level of recognition exploitation easier for a malicious user.

And speaking of Response and Block Pages, there are other items that can more easily characterize a BIGIP system, making an attacker's life easier when recognizing systems.

The question here is precisely at this point, is it possible to assign a different name to these variables to use them?
Ex. From: <%TS.request.ID()%>
To: <%id.support()%>

Is it a valid question? Does it make sense in the context of security?