Community Highlights, Week 40, '22

I'm trying a new thing this week, bolding names of users and titles of posts to try to make it more easy to read. Please let me know in the comments if this works/doesn't work for you.

During this Cybersecurity Awareness Month, we'll be putting out a LOT of content. in case you missed it, here is what we posted this last week on the topic:

nagi shared some important information in 2 Microsoft 0-day, Linux kernel 6.0, Github Arctic Code Vault - This Week in Security - Sept 24-30

Fouad_Chmainy 's article series "Manage F5 BIG-IP Advanced WAF Policies with Terraform"

Scheff wrote You want Modern Auth … for an app or client that’s stuck in the 2010s

momahdy shared his hands-on lab Zero Trust - Making use of a Powerful Identity Aware Proxy and his article Leverage F5 BIG-IP APM and Azure AD Conditional Access Easy button

chaithanya_dileep shows us how to Mitigate OWASP API Security API4:2019 Lack of Resources and Rate Limiting using F5 Distributed Cloud

If that is enough reading for doing for now, hop over to the DevCentral YouTube channel and check out this month's special series: Scary Hack Stories!

Beware What You Download
Know Your Blobs

Forum post highlights:

jlarger wanted to know how to go about capturing load sys config verify errors to a file and iaine had the quick solution

suthomas1 asks about ASM policy on a VS and CA_Valli dropped some solid knowledge, and Nikoolayy1 (extra-busy in the forums this week!) gave some advice

Michaelyang wanted syntax for simple http monitor and xuwen came through with the accepted response