This article will go through some common WAF rules and the alternative security options for disabling these rules. However, security will need to be considered before you can disable it. The simplest way in the above scenarios is to disable the corresponding WAF rule. The consequence is a response with a 403 status code returned to the client. From there it can be concluded that WAF detected some requests as malicious or “misunderstood” a request as false positive. And of course, the functionality of the application only fails in certain cases.
So why does a good service fail the application functionality? When I checked the WAF request log, I found out that a number of requests were blocked due to a violation of the AWF rule. Through ruleset, WAF helps to prevent security risks and some common types of network attacks such as XSS, SQL Injection, … WAF is a firewall service dedicated to web applications of AWS. Why? Due to bug or server problem, when everything is working properly under local machine and there is no error log on server? Finally, I “fell back” when I knew the reason lies in the WAF service (Web Application Firewall) is set up on the server. is one of the recent questions I have encountered after when deploying web application on the Amazone Web Service (AWS) platform. “Honey, I did a search and it returned an error 403”, “Bro, I could not submit the registration form with the attached upload image”, ….
0 kommentar(er)
