WAF 340617

From Atomicorp Wiki
Jump to: navigation, search

Rule ID

340617

Alert Message

Atomicorp.com WAF Rules: GET or HEAD requests with bodies attack

Description

GET and HEAD requests can not have bodies. This rule detects an attempt to include a body with these methods and can be part of attempt to attack your system by hiding or smuggling content in a non-standard method.

False Positives

There are no known False Positives for this. This method is also invalid HTTP and should not be allowed.

If you do believe this is a false positive, it recommended that you report this to our security team so they can determine if this is a legitimate case, or if its clever attack on your systems. Instructions to report false positives are detailed on the Reporting False Positives wiki page.

Similar Rules


Outside References

Retrieved from "https://wiki.atomicorp.com/wiki/index.php?title=WAF_340617&oldid=678"
Personal tools