Add a whitelist key to avoid false alerts

osesecsuite

In version 5, we add a function to allow you to add the custom string / key / signature into the whitelisted keys pool in order to avoid false alerts. Here is an example:

The following attack triggers the 20% chr signature in Layer 1 protection, and it is obvious that the alert is a false alert.

OSE Security Suite version 5

What we need to do is to add a whitelist signature into the whitelist pool. Please go to OSE Anti-Hacker --> Whitelist keys --> Add Whitelist Key, as shown below:

Add Whitelist Key

In this example, we should add '%20Christopher' into the whitelist pool, save it:

Add Whietlist Key

That's it, this URL will be ignored in Layer 1 protection if %20chr is found, but other signatures will still be effective while Layer 2 protectio is still turned ON,  so your server is safe even if this key is whitelisted.

cdn.opensource-excellence.eu/screenshots/suite5/add_whitelistkeys1.png
Last modified onFriday, 06 July 2012 03:03
Helix

Founder and MD @ Open Source Excellence

Login to post comments
back to top

ALL TRANSACTIONS ARE PROCESSED IN PAYPAL AND THE FOLLOWING CREDIT CARDS ARE ACCEPTED.

paypal-curved-32px visa-curved-32px visa-electron-curved-32px mastercard-curved-32px delta-curved-32px maestro-curved-32px discover-curved-32px solo-curved-32px switch-curved-32px google-checkout-curved-32px Secure Shopping

Satisfaction Guaranteed Best Web Tool