Change
Relax 404 classification of malicious requests
Issue description
Currently a 404 gets almost always classified as a malicious request. This leads to many false positives, e.g. when a search engine bot with an outdated database comes by. When Topincs is scanned for vulnerabilities the bad requests come en masse and in large variety, the ones that 404 are mostly URLs with a path containing an injection string.
|
Work sessions
Start |
2024-03-20T14:03:10
|
End |
2024-03-20T14:53:03
|
Participant |
Robert Cerny
|
|
We are sorry
This page cannot be displayed in your browser. Use Firefox, Opera, Safari, or Chrome instead.