WAF 340361

From Atomicorp Wiki
Jump to: navigation, search

Rule ID

340361

Alert Message

Atomicorp.com WAF Rules: CONNECT method denied

Description

The CONNECT method can be used to connect to arbitrary services and can turn a web server into a proxy server. For example, this method can be used to connec to port 25 on a mail server, turning a web server into an open relay for spamming. Unless you have configured your system to be a proxy, and have setup appropriate access control it is recommended you leave this rule turned on.

False Positives

Can be triggered if the system is a proxy server.

Similar Rules

Outside References

Personal tools