Forum Discussion
THE_BLUE
Cirrostratus
CirrostratusCan't upload msg file - ASM block
WAF block my request due to " attack signature detected" when try to upload msg file , and the Context : HTTP Request Body Unparsed Payload. the request is look like this : Content-Type: multipa...
This looks correct, though I don't have any lab where I could test this at the moment.
Your configuration would apply anytime the Content-Type header value is multipart/form-data.
The Request Header Value allows wildcards. You could try to narrow down to Do Nothing only for .msg files by testing this combination:
Request Header Name : Content-Disposition
Request Header Value : form-data; name="*.msg"; filename="*.msg"
Request Body Handling : Do Nothing
EDIT: A word of caution. You should consider to what risk you are exposing your application when not checking these uploads.
Daniel_Wolf
MVP
MVPHi ,
I guess this discribes your blocking message and a possibe solution:
K32081491: ASM blocked a request due to Attack Signatures triggered with Violation Context AMF body
KR
Daniel
THE_BLUECirrostratus
CirrostratusDear Daniel,
Many thanks for sharing.
For Request Header Name, enter an explicit header name that must appear in requests for this URL.
so in my case i have to do like this :
Request Header Name : Content-Type
Request Header Value : multipart/form-data;
Request Body Handling : Do Nothing