This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

SQL Injection Attack blocks login to webpage

After upgrading to UTM 9.2 my webserver was unavailable to customers. They got to the login screen, but after entering their credentials they got an error message saying reports could not be loaded. After some tinkering with the settings, I found the problem was solved by disabling SQL Injection Attack in the default firewall profile. In UTM 9.1 the SQL Injection Attack filtering option was active without any problems. [:S]

Any thoughts on this? Thanks in advance.

This thread was automatically locked due to age.

Parents

0 Evianne over 11 years ago

With 9.2 the threat filtering was extended: new categories were added and also new rules were added or altered to the latest rule set.

If one or few rules conflict with your application, it is not necessary to disable SQL Injection in general, you can also just skip these rules.

Best,
Sabine
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 Evianne over 11 years ago

With 9.2 the threat filtering was extended: new categories were added and also new rules were added or altered to the latest rule set.

If one or few rules conflict with your application, it is not necessary to disable SQL Injection in general, you can also just skip these rules.

Best,
Sabine
Cancel
Vote Up 0 Vote Down

Cancel

Children

No Data

SQL Injection Attack blocks login to webpage

Submitted a Tech Support Case lately from the Support Portal?