For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

iRule Security 101 - #03 - HTML Comments

In this session of iRules Security 101, I'll walk you through on a process to strip unnecessary content from your outbound application responses. Section 3.2.5 of RFC 1886 (The Hypertext Markup Lang...

Published Aug 29, 2007

Version 1.0

Joined September 22, 2004

View Profile

Joe_Pruitt

Joined September 22, 2004

View Profile

Mike_Lowell_108

Historic F5 Account

Sep 04, 2007

Oh, and I almost forgot: the following PCRE has served me well...


s///msg;

You'll note that I took a different approach to matching. I'm not sure it's better, bit it is different, for sure. 🙂 The idea was to make sure I was allowing "anything" except sequences that would mean something special. I settled on this approach while trying to match a bunch of fairly complex and malformed-looking comments. I'm not sure I solved the problem perfectly, but I did solve it for the test cases I was interested in.

Help guide the future of your DevCentral Community!

What tools do you use to collaborate? (1min - anonymous)

iRule Security 101 - #03 - HTML Comments

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS