Its_not_the_F5
Nov 19, 2020Nimbostratus
ASM detecting violations "top" "time" within HTTP cookies
Hello Dev Central community,
I have a question about ASM triggering violations for known attack signatures for execution attempts based on keywords "top", "time", "source", etc. and how to properly handle these false positives.
These keywords appear within the HTTP cookie, where some URI paths include "top" and other unix/linux commands.
Aside from disabling this ASM violation from the security policy - is there a way to have the F5 ASM ignore these parameters?