IBM Verify

View Only

Mitigate host header poisoning/injection ISVA 10.0.6

Jump to Best Answer

Kevin Theunissen posted Wed February 12, 2025 05:34 AM

Hi community!
I hope anyone could help me out with my question, I am looking for answers for the following:
What configuration setting(s) of an instance would need to be changed to mitigate the risk of host header poisoning/injection.

Kind regards,

Kevin

Justin Dixon posted Tue February 25, 2025 01:55 PM Best Answer

I believe this would be the RP conf file stanza you would need to use to accomplish this...It could also likely be done with the WAF rules as well, but this is likely a lighter weight option...

[validate-headers]

# This stanza is used to list those headers which should be validated

# on each request. The format of each configuration entry is:

# <hdr> = <value>

# For example to ensure all requests are from www.ibm.com set:

# host = www.ibm.com

# If multiple headers of the same name are configured, the corresponding

# header in the request must match one of the configured values

IBM Verify

Mitigate host header poisoning/injection ISVA 10.0.6

Additional
Resources

Office

Quick Links

IBM Verify

Mitigate host header poisoning/injection ISVA 10.0.6

Related Content

Configure Kerberos for multi Active directory in ISVA

How To Setup IFA Using ISVA Lightweight Containers

ISVA DevOps: Optimizing system alerts visibility by selectively muting them

Allow End Users to add Risk Mitigation Controls using IGI 5.2.5

ISVA/IVIA Automated configuration

Additional Resources

Office

Quick Links

Additional
Resources