WAF 330019

From Atomicorp Wiki
Jump to: navigation, search

Rule ID

330019

Status

Active rule currently published.

Alert Message

Atomicorp.com WAF Rules: Suspicious Web Client Detected (Disable this rule if you wish to allow these clients)'

Description

This rule detects clients or libraries that are known to sometimes used by malicious parties to carry out unauthorized, or potentially malicious purposes. These clients are not necessary conducting malicious or unauthorized behavior, but they are know to be used by malicious parties as spamming tools, worms, web site "scrapers", attack tools and others. Some users prefer to block these clients to prevent malicious activity or excessive use of bandwidth from these clients.

If you wish to allow these clients, just disable this rule.


False Positives

This rule has no known false positives. If you wish to allow these clients, disable this rule.

If you believe this is a false positive, please report this to our security team. Instructions to report false positives are detailed on the Reporting False Positives wiki page.


Tuning Recommendations

If you wish to tune this rule yourself, please see the Tuning the Atomicorp WAF Rules page for basic information.

Similar Rules


Knowledge Base Articles

None.

Outside References

Personal tools