Last Modified: Sep 14, 2023
Affected Product(s):
BIG-IP ASM
Known Affected Versions:
14.1.0, 14.1.0.1, 14.1.0.2, 14.1.0.3, 14.1.0.5, 14.1.0.6, 14.1.2, 14.1.2.1, 14.1.2.2, 14.1.2.3, 14.1.2.4, 14.1.2.5, 14.1.2.6, 14.1.2.7, 14.1.2.8, 14.1.3, 14.1.3.1, 14.1.4, 14.1.4.1, 14.1.4.2, 14.1.4.3, 14.1.4.4, 14.1.4.5, 14.1.4.6, 14.1.5, 14.1.5.1, 14.1.5.2, 14.1.5.3, 14.1.5.4, 14.1.5.6, 15.0.0, 15.0.1, 15.0.1.1, 15.0.1.2, 15.0.1.3, 15.0.1.4
Opened: Dec 17, 2018 Severity: 3-Major
Some fields in the Bot Defense request log have been supplanted by new ones that add more information reflecting new features. There are duplicated fields for Bot Defense request log. The previous fields are being kept for backward compatibility so that existing code reading the remote logs do not break. Their presence might introduce confusion as to their significance and use.
Redundant fields that may create confusion.
Using the Bot Defense remote logger.
You can safely ignore these fields and use the new ones.
None
The following fields in the Bot Defense request remote log are deprecated, and their new replacement fields should be used instead: -- 'classification_reason': Currently always empty string. The classification is implied by the detected signatures and/or anomalies. -- 'request_status': Replaced by 'new_request_status' in conjunction with 'class' and 'actual_verification_action'. -- 'reason': Currently always empty string. The reason is now conveyed by: 'configured_mitigation_action_reason', 'actual_mitigation_action_reason' and 'browser_actual_verification_action_reason' -- 'action': Replaced by 'actual_verification_action' and 'actual_mitigation_action'. -- 'previous_action': Replaced by 'previous_initiated_action' and 'previous_initiated_action_status'. -- 'client_type': Replaced by 'class'. -- 'mobile_is_app': Replaced by 'class'.