KB: 1058

How to prevent sites from XML bomb attack?

Problem Statement

Client wants to protect their sites from XML bomb attack which are protected by Haltdos solutions.

Solution

Steps to Solve:-

The client can achieve the above requirement by configuring XML policies.

1. Login into Haltdos console.

2.Go to Apps > WAF > Listener > Profile > Profile default setting > Policy > XML Policy > Configure the XML Policy > Save Changes.

3. Now send bulk XML to the respective listener.

4. Below WAF incident is showing dropped request when bulk XML payload hit the listener.