Help
Technical Forum
Ask questions. Discover Answers.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Technical Forum Quicklinks: No Replies | Active-Not Solved | Recent Solutions

ASM Policy to prevent backend server fingerprinting

Michael_Madewel
Nimbostratus
Nimbostratus

‎26-May-2022 09:19

We recently moved a legacy Windows web server behind an ASM. The server can't be upgraded for various reasons. We are not yet ready to deploy a full security policy in blocking mode, but we would at least like to prevent Shodan  and other scanners from fingerprinting the backend server (e.g., determining OS version). How can we accomplish this? 
Thanks.

Labels:
0 Kudos
2 REPLIES 2

ragunath154
Cirrus
Cirrus

‎26-May-2022 21:56

apart from WAF policy i would recomend to attach the BOT profile, which includes scanners database to block.

ip intelligence too have database of scanner ip's which you can block..

Nikoolayy1
MVP
MVP
In response to ragunath154

‎29-May-2022 00:23

Also the F5 ASM by default is removing by default the server response header which is nice:

 

https://support.f5.com/csp/article/K6534

0 Kudos
Copyright © 2023 Khoros, LLC