Forum Discussion

Altocumulus

May 03, 2023

Solved

Handle False Positive for files upload

Hi folks, I'm wondering how to handle uploading files through XC. For example, I have a URL used for uploading files to a web application, say /upload. The files appear to be scanned by XC which d...

Sudhir_Patamsetti
May 03, 2023
Yes, the reocmmendation is to leave it "enabled" ( the feature is enabled in the default policy ).

Regarding the comment "lowered the level of protection against SQL Injection type attacks" , could you please open a support ticket with the details ? We will review and make improvements as needed to the model

AlsDevC

Altocumulus

May 04, 2023

Hi Sudhir, I re-enable the option and my file ipload works correctly, i see the request is triggered by WAF but signatures are in Autosuppressed state. It answer my initial question, thanks.
I'll open a case for SQL Injection are passing when I activate the feature.

Thanks all.

Forum Discussion

Handle False Positive for files upload

Recent Discussions

F5 XC | Rewrite Redirect functionality

A quick post on how F5 XC Health Checks are different from BIG-IP

Global Log Receiver - Payloads

F5 XC | Stuck at VIRTUAL_HOST_PENDING_A_RECORD

JSON field description

Related Content

F5 Distributed Cloud WAF AI/ML Model to Suppress False Positives

File upload and ASM

CMS causing False Positives

File Uploads and ASM

Intermediate iRules: Handling Strings