Modify content in error 500 server response to client

Question

I don't know if this is even possible yet but thought I'd bounce it out here.&nbsp;
&nbsp;I'm looking to see if there's a way to modify the content in an error 500 page being returned to the client to sanitize some info for security reasons. &nbsp;
&nbsp;Having the ASM block all error 500's is not an option at this time as the application needs them for user error in some places. I know....500 is supposed to be not used for this purpose, but even if the app guys coded the error to 5xx they'd still be asking to remove the unwanted data.&nbsp;
&nbsp;I can't think of a way to trigger the event based on return traffic yet, but can't rule it out yet.&nbsp;
&nbsp;In the end I have no problem saying it's not doable and it's either all or none until you re-code the app, but just looking for verification.&nbsp;
&nbsp;Thanks,
&nbsp;Dan&nbsp;

hooleylist · Answer

Hi Dan, 
&nbsp;  
&nbsp; You could potentially do this using the ASM_RESPONSE_VIOLATION iRule event (v10.1.0+).  You'd want to have the illegal status in response marked for alarming, but not blocking. 
&nbsp;  
&nbsp; http://devcentral.f5.com/wiki/iRules.ASM_RESPONSE_VIOLATION.ashx 
&nbsp;  
&nbsp; You can then use ASM::payload to get the current app payload. 
&nbsp;  
&nbsp; Aaron

Forum Discussion

Modify content in error 500 server response to client

1 Reply

Recent Discussions

BIG-IP DNS: Check Status Of Multiple Monitors Against Pool Member

Open Redirection Mitigation

F5Access | MacOS Sonoma

enable tls1.2 on management interface on F5 ltm running version 10.x

[ASM] - what is "Browser Challenge file" ?

Related Content

iRule to modify a content-security-policy header

irule replace and modify uri and response

Introduction of Incident Response

Rewrite http:// to https:// in response content

iRule: modify uri and response