Many F5 teams are on the North American leg of the F5 Academy BIG-IP Next Roadshow, where we are sharing the BIG-IP story, where we're going with it, and then diving into some hands-on labs with the attendees. I got to attend in person in Kansas Cit...
Introduction: OWASP API Security Top 10 - 2019 has two categories “Mass Assignment” and “Excessive Data Exposure” which focus on vulnerabilities that stem from manipulation of, or unauthorized access to an object's properties. For ex: let’s say ther...
This Week in SecurityNovember 13th - 19th, 2023WinRAR, human curiosity and new CPU-based virtualization escape vulnerabilities Editor's introduction Aaron here as your editor this week for a round-up of notable security news that caught my eye. Ke...
Today, many F5 customers use AWS, and use the AWS Marketplace to procure F5 BIG-IP software. Customers that follow this route receive multiple benefits, such as a simplified procurement process and the ability to use their Enterprise Discount Program...
Introduction: F5 Distributed Cloud (XC) Origin server subset rules provide the ability to create match conditions on incoming source traffic to the HTTP load balancer. The match conditions include Country, ASN, Regional edge (RE), IP address, and cli...
Introduction The Secure Sockets Layer (SSL) protocol and its successor, Transport Layer Security (TLS), are being widely adopted by organizations to secure IP communications. While SSL/TLS provides data privacy and secure communications, it also cre...
I got a message from a colleague about an interesting challenge a couple of weeks ago. The challenge was two-fold with the customer iRule that was in place: The rule used the RESOLV::lookup command, which works but has been deprecated since version ...
Jordan here as your editor this week for a round-up of notable security news that caught my eye. Keeping up to date with new technologies, techniques and information is an important part of our role in the F5 SIRT. The problem with security news is ...
Addressing Broken Object Level Authorization (BOLA) vulnerabilities requires a multifaceted approach, combining robust coding practices, secure development methodologies, and powerful tools. Among these tools, F5 BIG-IP Access Policy Manager (APM) st...
This 2019 API Security article covers the summary of OWASP API Security Top 10 – 2019 categories and newly published 2023 API security article covered introductory part of newest edition of OWASP API Security Top 10 risks – 2023. We will deep-dive i...
I was working with a colleague on how best to manage connections to multiple sites when DNS persistence is lacking. That article will come, but as we discussed solutions, digging into the persistence cookie that the BIG-IP inserts led to some fun wi...
Editor's introduction This week in security editor is Koichi. One of the popular board game, Othello, has been solved. Needs explanation what "solved" means. So I chose topics of LockBit Ransomeware, hacking contest Pwc2Own, An executive order f...
Summary Building on a previous article and use case, this article discusses the three more advanced features of F5 NGINX Ingress Controller: How to perform caching of authentication subrequest responses,How to use the key-value store to sync cached ...
Introduction: This week in security editor is Lior. This week security news highlights are that RCE’s are everywhere, and they are located at the control plane (configuration utility GUI/API) that are open to the public internet. RCE – is a Rem...
Introduction This is a follow-up article to F5 BIG-IP deployment with OpenShift - platform and networking options where the multiple deployment options are shown. It is highly recommended to read that article first. Publishing applications through...
Introduction This article is an architectural overview on how F5 BIG-IP can be used with Red Hat OpenShift. Several topics are covered, including: 1-tier or 2-tier arrangements, where the BIG-IP load balance workload PODs directly or load balance ing...
The widespread acceptance of GraphQL among developers today is a testament to its remarkable ability to streamline data retrieval from multiple sources. By facilitating an efficient data access and aggregation process, GraphQL enables developers to...
In an era where cyber threats loom large, safeguarding digital assets has become paramount. Among the vanguard of defenders stands the F5 BIG-IP Access Policy Manager (APM), a stalwart guardian against the notorious OWASP Top 10 vulnerabilities. In t...
Editor's introduction Hello Everyone, this week your editor is Dharminder. I am back again with another edition of This Week in Security, This week I have security news about Google Play Protect Real-Time Code level scanning for Android Malware, R...
This article is part two of the article series "Reviewing vulnerability scanner results for an Access Policy Manager (APM) protected Virtual Server" from your F5 SIRT. Here is part one: https://community.f5.com/t5/technical-articles/reviewing-vulner...
