WAF 390707

From Atomicorp Wiki
Revision as of 12:54, 10 January 2011 by Mshinn (Talk | contribs)

(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to: navigation, search

Rule ID

390707

Status

Active rule currently published.

Alert Message

Atomicorp.com WAF Rules: Too many arguments in request (max set to 2048, increase as necessary for your system)


Description

This rule simply detects if a single request has more that 2048 arguments. This rule is designed to help protect your system from certain Denial of Service (DOS) attacks.


False Positives

This rule has no known false positives. If you believe this is a false positive, please report this to our security team. Instructions to report false positives are detailed on the Reporting False Positives wiki page.


Tuning Recommendations

If you wish to tune this rule yourself, please see the Tuning the Atomicorp WAF Rules page for basic information. In the case of this rule, if you wished to increase the number of arguments do not modify the rule itself, ASL will overwrite updates to the rules if you tell it to update its rule. Instead, follow the recommendations on the Tuning the Atomicorp WAF Rules page, disable this rule globally, and create a custom version of this rule for your system.

If you do not wish to restrict the number of arguments in a request, just disable this rule.

Similar Rules


Knowledge Base Articles

None.

Outside References

Retrieved from "https://wiki.atomicorp.com/wiki/index.php?title=WAF_390707&oldid=1141"
Personal tools