Topic: Block Cross Site Scripting (Read 2900 times)

mshoaib · « **on:** May 30, 2009, 07:31:49 PM »

I am using netscaler just for load balancing http traffic.

Recently a flaw detected in the application and i was wondering to confirm from the Guru's here if cross site scripting can be blocked using Netscaler Application firewall. The major portion of the flaw is abusing the variables in the URI part of the URL. I will be getting few examples from our security department and will post it here once available.

I am running Netscaler version 8.0.

Any comments / suggestions highly appreciate.

Thank you,

evildani · « **Reply #1 on:** May 31, 2009, 10:45:49 AM »

Yeap, with a 99.99999% certainty you can block such attacks with the application firewall. Post the examples and I will help you write the rules needed to protect the application.

asherlm · « **Reply #2 on:** June 01, 2009, 09:28:10 AM »

We've been using the cross-site scripting protections in application firewall since it was a standalone appliance made by Teros. We have it enabled as one of the default protections on our web environments. The nice thing about it is that it gives you the option to block all scripting (URL and in fields) or allow specific exemptions to the policy.

jmsazboy · « **Reply #3 on:** June 01, 2009, 04:05:11 PM »

Last month alone, my APP firewall blocked over 1000 XSS attempts as well a numerous HTML Injections (AF_400), SQL Injections and Start URL.

I posted a brief lab on some of the advanced features of the APP firewall on http://jmsazboy.wordpress.com. Go to the bottom of the page and you can see the video/CBT.

Netscaler Knowledgebase

News:

Author Topic: Block Cross Site Scripting (Read 2900 times)

mshoaib

Block Cross Site Scripting

evildani

Re: Block Cross Site Scripting

asherlm

Re: Block Cross Site Scripting

jmsazboy

Re: Block Cross Site Scripting