Mohammed_M_Irfa
Aug 16, 2018Nimbostratus
Security Parameters: Need to be apply to make secure solutions
Hi,
We have BIG-IP LTM+ASM in HA, 13.1.0v latest version is running.
Standard type Virtual server is configured, TCP and HTTP profile is enabled. SNAT Pool List is enalbed. ASM Security Policy is applied to Specific VS.
Any one help me in below vulnerabilities ID, which is found when the solutions scanned by the Security team.
- Cookie Does Not Contain The "secure" Attribute
- Web Server Predictable Session ID Vulnerability
- HTTP Security Header Not Detected
- Web Directories Listable Vulnerability