For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

The BIG-IP Application Security Manager Part 3: The Importance of File Types, Parameters, and URLs

This is the third article in a 10-part series on the BIG-IP Application Security Manager (ASM). The first two articles in this series are: What is the BIG-IP ASM? Policy Building This third ...
Published Sep 18, 2013
Version 1.0
ASM Advanced WAF
security
tech tip
Praveen_Kumar_K's avatar
Praveen_Kumar_K
Icon for Nimbostratus rankNimbostratus
Mar 12, 2015
Hello John, Hope you are doing good. In our setup ASM is detecting illegal file type violation, Not sure how ASM detects file type i assume .filetype below url is detected with file type 0001, how to avoid this? its detecting many file types like 0002, 0003 , 0004 etc. I can add a wildcard with file type 000* , however i feel that should not be solution. /something/aggregators/get-quet.0001?cmpid=000