Forum Discussion

Seçkin's avatar
Seçkin
Icon for Cirrus rankCirrus
Mar 30, 2021

ASM Attack Signature Sets

Hello everyone, Do you have any recommendation which attach signatures set should be added to the policy as a best practice? I mean except it has been added by Server Technologies. For example, do i ...
  • Erik_Novak's avatar
    Mar 30, 2021

    If your application relies on a back-end SQL DB then yes, you should add the SQL Injection signature sets to secure it. It sounds like Server Technologies are being automatically detected and added your policy. That's good because all you really need are the attack signatures for the OS, web server, application framework, and database which match your environment. This means you won't have to manage violations triggered by attack signatures which are not related to your infrastructure. Make sense?