Why does WAF block HTTP OPTION method

Question

Does the HTTP Option method pose significant security risk to the web application?&nbsp;

aswin_mk · Answer

Hi ee&nbsp;&nbsp;i have read in so many articles relating the threats by option method, main thing is attackers mostly using it. if an application doesn't need the method, no need of using it. so as per awaf by default below mentioned only allow if it's a blocking profile.&nbsp;&nbsp;&nbsp;BRAswin

Forum Discussion

Why does WAF block HTTP OPTION method

Recent Discussions

APM - Close Browser

Converting Citrix NetScaler Transform Policy to F5 BIG-IP LTM

Why does WAF block HTTP OPTION method

APM Portal Access Rewriting

Help with an I-rule rewrite

Related Content

BIG-IP deployment options with Openshift

Service Discovery and authentication options for Kubernetes providers (EKS, AKS, GCP)

LTM Policy Options Clarification

domain blocking

Response and blocking page