Skip to content
This repository has been archived by the owner on May 14, 2020. It is now read-only.

Rule 942450 causes request with Ethereum address or transaction hash to be banned #951

Closed
pash7ka opened this issue Nov 9, 2017 · 2 comments
Closed

Rule 942450 causes request with Ethereum address or transaction hash to be banned #951

pash7ka opened this issue Nov 9, 2017 · 2 comments

Comments

@pash7ka
Copy link

pash7ka commented Nov 9, 2017

The rule 942450 uses "(?i:(?:\A|[^\d])0x[a-f\d]{3,}[a-f\d]*)+" regexp to identify SQL Hex Encoding which is considered as a possible SQL injection atack.
Unfortunately Ethereum addresses (like 0xc2d7cf95645d33006175b78989035c7c9061d3f9 ) and transaction hashes (like 0x653351a883a4a82512dbaceadd9d9ef266658547829a0d30d7aaf26647a144cb ) are also catched by this rule.
Can we make an exception for this hex strings with lenght of 40 and 66 symbols?
@dune73
Copy link
Contributor

dune73 commented Nov 9, 2017

Thank you for reporting @pash7ka.

We are aware of issues with 942450 and discuss them in issue #833. I'm closing your report in favor of said issue.

@dune73 dune73 closed this as completed Nov 9, 2017
@dune73
Copy link
Contributor

dune73 commented Nov 9, 2017

Also, if you want to write a rule exception to make it go away, please take a look at the tutorials at https://netnea.com.

@dune73 dune73 mentioned this issue Nov 9, 2017
Closed
@CRS-migration-bot CRS-migration-bot mentioned this issue May 13, 2020
Closed
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@dune73 @pash7ka