Stefan Wendrich1709160263 Posted March 7, 2023 Share Posted March 7, 2023 Hello, i want to write a relaxation rule for html sql injection grammar based. But my relaxation is not working. The adm log shows So my relaxation rule is configured so But its not working. I also tried as value expression .* but this also won't work. Any ideas, why? Link to comment
0 Rhonda Rowland1709152125 Posted March 7, 2023 Share Posted March 7, 2023 (edited) First mark the "is regex" for username which is also for the URL being regex based. You might need to include the "full URL" that the security check is flagging as well, but I'd test just one thing at a time. Edited March 7, 2023 by Rhonda Rowland Added note Link to comment
0 Stefan Wendrich1709160263 Posted March 7, 2023 Author Share Posted March 7, 2023 its the same behavior... Link to comment
Question
Stefan Wendrich1709160263
Hello,
i want to write a relaxation rule for html sql injection grammar based. But my relaxation is not working. The adm log shows
So my relaxation rule is configured so
But its not working. I also tried as value expression .* but this also won't work.
Any ideas, why?
Link to comment
2 answers to this question
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now