WAF rule set update for 2018-05-11 (legacy)
IMPORTANT: Our original WAF offering is now a legacy product. It was superseded by a new version, including a new interface and API, on July 13, 2020. The legacy version will continue to be supported for all existing users. The new version is available to all customers and is the default version for new customers as of July 13, 2020. Customers of the legacy WAF can contact email@example.com or their Fastly account team to upgrade.
Type of Change
- Added logdata fields to OWASP rules 920230, 920260, 920270, 920271, 920272, 920273, 920274, 920360
- Introduce new Fastly internal rule 4170001, which mitigates Drupal sa-core-2018-004 attack
- Adjust threshold rule 1010090 message
Affected Rule Sets
- Fastly Rules