search

aws-solutions / aws-waf-security-automations

This solution automatically deploys a single web access control list (web ACL) with a set of AWS WAF rules designed to filter common web-based attacks.
https://aws.amazon.com/solutions/aws-waf-security-automations
Apache License 2.0
852 stars 366 forks source link

Handle oversize handling in existing ruleset #220

Closed btmndkh closed 2 years ago

btmndkh commented 2 years ago

Is your feature request related to a problem? Please describe. Keep seeing the following error in WAF ruleset and now start receiving email too...

Error message: You use a rule that inspects the web request body but doesn't specify handling for oversize body contents. AWS WAF only inspects the first 8 KB of the request body. Edit your rules that inspect the body and specify oversize handling. Learn more

Describe the feature you'd like Need guidance or change in cloudformation that how to apply block oversized contents in existing rules

To add a rule that blocks oversized contents -> https://docs.aws.amazon.com/waf/latest/developerguide/web-request-body-inspection.html

Additional context

I tried the following setting but still got error message in "AWSWAFSecurityAutomationsXssRule" ruleset

image

Also how to add size to an existing match type? new statement? image

btmndkh commented 2 years ago

Is this project abandoned?

btmndkh commented 2 years ago

Created new waf acl with latest templated #222