Forum Discussion

Nimbostratus

Jul 06, 2011

The BIG-IP ASM attack signature engine has a limited maximum recursion depth

Hi guys, According to sol12250 " This behavior limits the amount of resources that can be dedicated to any one evaluation operation. Certain combinations of attack signatures and r...

app sec

BIG-IP Access Policy Manager (APM)

security

brad_11480

Nimbostratus

Sep 07, 2011

so wondering if 10.2.1HF3 (10.2.1 build 511.0) could be missing this fix. we are running into a lot of these when we enabled SQL injection signatures and finding that the requests aren't very complicated at all.

hate to have to turn off signatures just to make this work. defeats the purpose and the reason of having the ASM.

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

The BIG-IP ASM attack signature engine has a limited maximum recursion depth

Recent Discussions

self-directed requests fail because of no certificate

Decode ObjectSID from Base64-encode string

iRule - Url rewrite and header replace and pool selection not working

ip x-forwarding

F5 ASM API-Protection Policy

Related Content

TLS Fingerprinting JA3 iRule Application: Rate limit and block malicious traffic based on TLS signature

Support of WAF Signature Staging in F5 Distributed Cloud (XC)

Mitigating JSON-based SQL injection with BIG-IP ASM / Advanced WAF Attack Signatures

Wildcard Parameter signature attack

BoT Defense Profile, Signature Enforcement

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS