Check why some endpoints are blocked by Comodo WAF

trustedlogin / trustedlogin-vendor

Plugin to interact with TrustedLogin's encrypted storage infrastructure to redirect support staff into an authenticated session on client installations.

GNU General Public License v3.0

0 stars 1 forks source link

Check why some endpoints are blocked by Comodo WAF #30

Open inztinkt opened 4 years ago

inztinkt commented 4 years ago

some trustedlogin REST endpoints are blocked by Comodo WAF rules.

This should be checked for clients who experience issues with 403 errors.

zackkatz commented 4 years ago

Can we add a Health Check?

Server response header "Server:" will contain "Protected by COMODO WAF" string instead of the web server version information.

Check the headers for Comodo WAF (see docs)

zackkatz commented 4 years ago

@inztinkt Should this be closed as resolved?

inztinkt commented 4 years ago

Server response header "Server:" will contain "Protected by COMODO WAF" string instead of the web server version information.

This has not been added to healthcheck, will get it added.

@zackkatz this will only replace 'Server' value if Set Server Signature setting is enabled. Is that a safe assumption that it will be enabled?

zackkatz commented 4 years ago

@inztinkt Yes, let's assume that's the case.

inztinkt commented 4 years ago

Sure thing, added to my task list.

zackkatz commented 4 years ago

For reference: https://help.comodo.com/uploads/helpers/Comodo_Web_Application_Firewall_2.17_Admin_Guide.pdf