Difference between revisions of "WAF 340617"

From Atomicorp Wiki
Jump to: navigation, search
(Created page with ''''Rule ID''' 340617 '''Alert Message''' Atomicorp.com WAF Rules: GET or HEAD requests with bodies attack '''Description''' GET and HEAD requests can not have bodies. …')
 

Latest revision as of 17:49, 25 November 2009

Rule ID

340617

Alert Message

Atomicorp.com WAF Rules: GET or HEAD requests with bodies attack

Description

GET and HEAD requests can not have bodies. This rule detects an attempt to include a body with these methods and can be part of attempt to attack your system by hiding or smuggling content in a non-standard method.

False Positives

There are no known False Positives for this. This method is also invalid HTTP and should not be allowed.

If you do believe this is a false positive, it recommended that you report this to our security team so they can determine if this is a legitimate case, or if its clever attack on your systems. Instructions to report false positives are detailed on the Reporting False Positives wiki page.

Similar Rules


Outside References

Retrieved from "https://wiki.atomicorp.com/wiki/index.php?title=WAF_340617&oldid=678"
Personal tools