Forum Discussion
samstep
Oct 16, 2016Cirrocumulus
Deepti, these violations are not learnable, you will need to add them manually to the policy.
The following violations are considered unlearnable:
- Request length exceeds defined buffer size
- CSRF authentication expired
- Illegal session ID in URL
- Login URL bypassed
- Login URL expired
- Cookie Violations
- ASM Cookie Hijacking
- Expired timestamp
- Modified ASM cookie
- Input Violations
- Illegal number of mandatory parameters
- Failed to convert character
- Brute Force: Maximum login attempts are exceeded
- Null in multi-part parameter value
- Negative Security Violations
- Virus detected
- RFC Violations
- Cookie not RFC-compliant
These are other special violations for which the system does not provide learning suggestions:
- Access from disallowed User/Session/IP
- Web scraping detected
Hope this helps,
Sam