Forum Discussion

Nimbostratus

Jul 13, 2009

Disable CC data for POST requests

Hi @all, its me again :-) Today, i am looking for a way to deactivate the CC check only for POST requests - is this possible? My first idea was, to do this...

app sec

BIG-IP Access Policy Manager (APM)

security

hooleylist

Cirrostratus

Jul 15, 2009

Hi Bjoern,

I can't really see the value in only applying the attack signature to response content for non-POST requests. Chances are the only vulnerability within an application which would lead to credit cards being leaked in response content would be from POST requests. So why would you want to disable the check for POST requests and not all requests?

If you do want to do this an iRule and second policy would be an option. You could use the 'HTTP::class select' command (Click here) to select a second HTTP class for POST requests. Note the second HTTP class must also be added to the virtual server in order to select it using HTTP::class. Selecting a second virtual server would work, but unnecessarily add the need for a second virtual server.

Aaron

Forum Discussion

Disable CC data for POST requests

Recent Discussions

F5 not sending traffic to Web pool

disable ciphers 1.0 and 1.1 on ssl client profile

Customer needs an LTM+DNS license. Would we recommend R2600 or R2800?

How to solve "TCP retransmit timeout" & "TCP RST from remote system" issue on BIG-IP LTM?

Error while running ansible

Related Content

Logging DNS Requests

Disable below cipher

BIG-IP Orchestrate in private Data Center using Terraform Cloud Agent

Disable Inter-VLAN Routing?

disable http retry