Fwd: No WAF detected - Solved

psp # Forward to the original target host forward with tls to destination } -- Forwarded message - From: Kihaguru Gathura Date: Fri, Dec 27, 2019 at 10:40 PM Subject: Re: No WAF detected - So

Re: No WAF detected - Solved

Hi, WAF is detected when certain methods are filtered in relayd. Thanks, Kihaguru. On Monday, December 9, 2019, Kihaguru Gathura wrote: > > > Hi, > A message form assessors and further tests below. > > > > > I have configured relayd to serve a single url that accepts no parameters. This

Re: No WAF detected

Hi, A message form assessors and further tests below. [image: image.png] I have configured relayd to serve a single url that accepts no parameters. This url is blocked by relayd with error 403 Forbidden if anything is appended to its end. I would expect WAF detection in such a test case but

Re: No WAF detected

On 2019/12/05 00:17, Kihaguru Gathura wrote: > > > > On Wed, Dec 4, 2019 at 11:58 PM Kihaguru Gathura wrote: > > > > >> Which is a better way to implement a WAF on OpenBSD using the base > utilities? > > > > relayd configured in certain ways might be considered as a

Re: No WAF detected

On 2019-11-22, Kihaguru Gathura wrote: > Hi, > > htbridge (https://www.immuniweb.com/websec/) no longer detects WAF on one of > my > web servers configured with OpenBSD-httpd and PF on same machine; > sample of pf.conf configuration as follows. PF isn't a web application firewall (WAF). >

No WAF detected

Hi, htbridge (https://www.immuniweb.com/websec/) no longer detects WAF on one of my web servers configured with OpenBSD-httpd and PF on same machine; sample of pf.conf configuration as follows.