Forum Discussion

Nimbostratus

Jul 25, 2014

Verify Host Header and request URL match.

I need to verify that the host header associated with the url request matches. example: disgruntled employee wants to wipe out everything on our internal sharepoint. he modifies his host file to s...

Altocumulus

Jul 25, 2014

Host header is one part of "http request", there is no "host" info in a header, then another in the "request".

disgruntled employee can download plugins to firefox or chrome and craft whatever headers or requests he needs, no need to mess with their /etc/hosts. If one can wipe out everything, when they should not have been allowed to, than that a bigger issue you have. Your system needs to securely authenticate people, then apply authorization policies so they access just what the need to access...

Unless I totally misunderstood your question, which happens to me often. Sorry.

Help guide the future of your DevCentral Community!

What tools do you use to collaborate? (1min - anonymous)

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

Verify Host Header and request URL match.

F5 Academy at AppWorld 2026

Introducing the F5 AI Assistant for BIG-IP

Recent Discussions

How can I get started with iCall

Connection Rest f5

Kubernetes cert-manager + LetsEncrypt + F5

The GSLB pool is providing an incorrect IP to end users

Unable to ping from some self ip on Velos

Related Content

Verifying Slack Requests with Mutual TLS

F5 NGINX HTTP Request Header Rules: What’s Permitted and What’s Not

APM HTTP Connector request and HTTP Headers

Routing HTTP by request headers

HTTP Request Smuggling Using Chunk Extensions (CVE-2025-55315)

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS