THE_BLUE
Sep 03, 2020Cirrostratus
Header Based content profile
If i have form with
Content-Type: multipart/form-data; boundary ................
that require file upload , when any file attached it is give attack signature detect. i have tried to add some change under specific url ex:
application security > url > advanced > Header Based content profile >
Request header Name :Content-Type
Request Header Value : *multipart/form-data*
Request Body Handling : Do nothing
so now is there any risk on doing this ? meaning that if there is a real attack it will be blocked or not?
and how f5 intercept the attach file?