Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
626
Views
0
Helpful
2
Replies

ACE for sql injection filtering

arnis
Level 1
Level 1

‎08-01-2007 01:57 AM

I have an ACE module in a Cat6500, that is load balancing to some HTTP servers.

occasionally there are SQL injection attacks towards the http servers.

I know the ACE can filter based on http strings, but

If you can provide me with some basic templates on what to filter out and how to format the string

to stop SQL injection attacks, that would be of great help.

Cheers.

Labels:
0 Helpful
2 Replies 2

umedryk
Level 5
Level 5

‎08-07-2007 09:19 AM

There are various signatures which are availbale for configuration for sql injection attacks. The signatures are some times application specific and it may not fit other application. Following links may help you

http://www.cisco.com/en/US/products/ps7314/products_white_paper0900aecd8068dcdb.shtml

http://www.cisco.com/en/US/products/ps7314/products_white_paper0900aecd80661ca6.shtml

0 Helpful

arnis
Level 1
Level 1
In response to umedryk

‎08-13-2007 05:41 AM

thank you for your suggestion, IF any one has implemented SQL injection attack filtering it would be great to get some examples.

Cheers

Arni

0 Helpful
Customers Also Viewed These Support Documents