KB: 1011
Masking login credentials for applications that are behind Haltdos WAF.
Problem Statement
The client requires to mask the login credentials. This means that wehn any user is logging in, the login credentials can be accessed via access logs. Hence, Haltdos WAF needs to ensure masking of sensitive information / Login credentials for the websites that are behind WAF.
Solution
Steps to Solve:-
Go to Apps > WAF > Listener > Profile > Rules > Log Rules
Create a new Log rule
- Enter rule name and rule message along with rule priority.
- Enter URI (PCRE Regex) - to filter URI
- Enter Method
- Adding attributes to be masked.
- Add location
- Mention parameter
- Enter match condition and value
- Add attribute
Repeat step 3 for multiple attributes.
Save changes.
As per entered log rule details, the password should be hidden with Asterisk (*) sign
As passwords can be extracted from the access log, but after deploying log rules in WAF, the password value is masked with Asterisk sign (*).