Technical Tip: Custom signatures based in Python, Elasticsearch or MongoDB in FortiWeb
| Description | This article explains how to create custom signatures in FortiWeb based on databases such as Elasticsearch and MongoDB, or script languages like Python, and how to protect web servers based on these features. |
| Scope | FortiWeb. |
| Solution | Based on a web application server configuration, these servers could use languages such as Python or databases like Elasticsearch and MongoDB; so a custom signature could be required to protect the web application server's information.
However, in the Signature Wizard of Known Attacks, the wizard does not show those databases in Step 1 'Database' or these languages in Step 4 'Script Language':
In those cases, these languages and databases are just not selected in the Signature Wizard. These settings are supported in 'Standard Protection' and 'Extended Protection' signature policies:
'Standard Protection' and 'Extended Protection' signature policies include a lot of important signatures for Cross-Site scripting (XSS), SQL injection, known exploits, sensitive server information disclosure, and other more.
Related document: |
