TRKJ/EdgeCommon
2
0
Fork 0
mirror of https://github.com/TeaOSLab/EdgeCommon.git synced 2025-11-05 22:30:25 +08:00
Code Issues Packages Projects Releases Wiki Activity

WAF增加“包含SQL注入”操作符

Browse Source
This commit is contained in:
刘祥超
2023-12-07 20:24:55 +08:00
parent e8a3dfba71
commit 671fd5dcc2
1 changed files with 34 additions and 25 deletions
Download Patch File Download Diff File Expand all files Collapse all files

9
pkg/serverconfigs/firewallconfigs/http_firewall_rule_operator.go
View File

@@ -25,6 +25,7 @@ const (
HTTPFirewallRuleOperatorSuffix HTTPFirewallRuleOperator = "suffix" HTTPFirewallRuleOperatorSuffix HTTPFirewallRuleOperator = "suffix"
HTTPFirewallRuleOperatorContainsAny HTTPFirewallRuleOperator = "contains any" HTTPFirewallRuleOperatorContainsAny HTTPFirewallRuleOperator = "contains any"
HTTPFirewallRuleOperatorContainsAll HTTPFirewallRuleOperator = "contains all" HTTPFirewallRuleOperatorContainsAll HTTPFirewallRuleOperator = "contains all"
HTTPFirewallRuleOperatorContainsSQLInjection HTTPFirewallRuleOperator = "contains sql injection"
HTTPFirewallRuleOperatorHasKey HTTPFirewallRuleOperator = "has key" // has key in slice or map HTTPFirewallRuleOperatorHasKey HTTPFirewallRuleOperator = "has key" // has key in slice or map
HTTPFirewallRuleOperatorVersionGt HTTPFirewallRuleOperator = "version gt" HTTPFirewallRuleOperatorVersionGt HTTPFirewallRuleOperator = "version gt"
HTTPFirewallRuleOperatorVersionLt HTTPFirewallRuleOperator = "version lt" HTTPFirewallRuleOperatorVersionLt HTTPFirewallRuleOperator = "version lt"
@@ -34,6 +35,7 @@ const (
HTTPFirewallRuleOperatorNotContainsBinary HTTPFirewallRuleOperator = "not contains binary" // not contains binary HTTPFirewallRuleOperatorNotContainsBinary HTTPFirewallRuleOperator = "not contains binary" // not contains binary
// ip // ip
HTTPFirewallRuleOperatorEqIP HTTPFirewallRuleOperator = "eq ip" HTTPFirewallRuleOperatorEqIP HTTPFirewallRuleOperator = "eq ip"
HTTPFirewallRuleOperatorInIPList HTTPFirewallRuleOperator = "in ip list" HTTPFirewallRuleOperatorInIPList HTTPFirewallRuleOperator = "in ip list"
HTTPFirewallRuleOperatorGtIP HTTPFirewallRuleOperator = "gt ip" HTTPFirewallRuleOperatorGtIP HTTPFirewallRuleOperator = "gt ip"
@@ -165,6 +167,13 @@ var AllRuleOperators = []*RuleOperatorDefinition{
CaseInsensitive: HTTPFirewallRuleCaseInsensitiveNo, CaseInsensitive: HTTPFirewallRuleCaseInsensitiveNo,
DataType: "strings", DataType: "strings",
}, },
{
Name: "包含SQL注入",
Code: HTTPFirewallRuleOperatorContainsSQLInjection,
Description: "检测字符串内容是否包含SQL注入",
CaseInsensitive: HTTPFirewallRuleCaseInsensitiveNone,
DataType: "none",
},
{ {
Name: "包含二进制数据", Name: "包含二进制数据",
Code: HTTPFirewallRuleOperatorContainsBinary, Code: HTTPFirewallRuleOperatorContainsBinary,