Forum Discussion

Nimbostratus

Oct 20, 2010

critical severity violations

We have just created our first web application asm security policy. The policy was setup by f5 admin which he considers it is suitable for the web application. My job is kind of auditing this po...

app sec

BIG-IP Access Policy Manager (APM)

security

hooleylist

Cirrostratus

Oct 21, 2010

Hi Abumo,

I wouldn't consider it a best practice to enable and configure every violation type that ASM can perform for every application. Ideally, the policy should be tuned to the application. For example, if the application performs proper session enforcement, there isn't a need to track that every request a client makes has gone through a successful authentication attempt. I would speak with the person that built the policy and possibly the people that built or administer the application to get a better understanding of what the application's security requirements are and why the policy was set up as it was.

Aaron

Recent Discussions

BWC iRule
May 02, 2024 dazor
Citrix XenServer Big-IP Upgrade help
May 02, 2024 John_Krum
iRule condition - request contains more than 10000 parameters
May 02, 2024 daliborwalk
Hi All, We have viprion 4300 with 4450 blades with 6 blades all blades having same configuration
May 01, 2024 kumar741
Can iRule be used to perform exception of IPI category based on Geolocation
May 01, 2024 Nishal_Rai

Forum Discussion

critical severity violations

Recent Discussions

BWC iRule

Citrix XenServer Big-IP Upgrade help

iRule condition - request contains more than 10000 parameters

Hi All, We have viprion 4300 with 4450 blades with 6 blades all blades having same configuration

Can iRule be used to perform exception of IPI category based on Geolocation

Related Content

OpenSSL CVE-2022-3786 and CVE-2022-3602 or "The Critical that wasn't"

Why K8s Egress Traffic Policy Control is Critical to Security Architecture- Part 1

Protecting Critical Apps against EastWest Attack

Copy over self IPs from several partitions

Why K8s Egress Traffic Policy Control is Critical to Security Architecture - Part 2