WAF Rule ID 343463

---

Alert message: HoneyTrap Alert: Disallowed robots.txt Entry Accessed.

Rule Class: Generic Attack Ruleset (06_asl_honeypot.conf)

Version:

Severity: Alert (HIDS: 10)

HTTP Protocol Phase: 1

HTTP Status: 403

Action: deny

Transforms:

Log Types:

• Basic Information (log)

• Capture full session (auditlog)

Description:

HoneyTrap Alert: Disallowed robots.txt Entry Accessed.

Troubleshooting:

False Positives:

Instructions to report false positives are detailed at Reporting False Positives If it is a false positive, we will fix the issue in the rules and get a release out to you promptly.

Configuration Notes:

• enabled by: MODSEC_10_RULES

• Requires Engine version: 2.9.0 or above

Tuning guidance Notes:

None.

If you know that this behavior is acceptable for your application, you can tune by following the guidance on the Tuning the Atomicorp WAF Rules

Additional Information:

Similar rules:

None.

Outside References:

None.

WAF Rule ID 343464

---

Alert message: Atomicorp.com Honeypot Rules: Probe for honeypot or non-existant web application.

Rule Class: Generic Attack Ruleset (06_asl_honeypot.conf)

Version:

Severity: Alert (HIDS: 10)

HTTP Protocol Phase: 1

HTTP Status: 403

Action: deny

Transforms:

Log Types:

• Basic Information (log)

Description:

Atomicorp.com Honeypot Rules: Probe for honeypot or non-existant web application.

Troubleshooting:

False Positives:

Instructions to report false positives are detailed at Reporting False Positives If it is a false positive, we will fix the issue in the rules and get a release out to you promptly.

Configuration Notes:

• enabled by: MODSEC_10_RULES

• Requires Engine version: 2.9.0 or above

Tuning guidance Notes:

None.

If you know that this behavior is acceptable for your application, you can tune by following the guidance on the Tuning the Atomicorp WAF Rules

Additional Information:

Similar rules:

None.

Outside References:

None.