Challenge 4 - Task 6 of 6
Configure Web Application Firewall to Protect Web Server Against XSS Attack
Scenario
You have to protect web applications hosted on OCI from cross-site scripting (XSS) attacks. You can use the OCI Web Application Firewall (WAF) capabilities to create rules that compare against incoming requests to determine if the request contains an XSS attack payload. If a request is determined to be an attack, WAF should return the HTTP Service Unavailable (503) error.
To ensure that the configured WAF blocks the XSS attack, run the following script:[http:// /index.html? ) To complete this deployment, you have to perform the following tasks in the environment provisioned for you: Configure a Virtual Cloud Network (VCN) Create a Compute Instance and install the Web Server Create a Load Balancer and update Security List Create a WAF policy Configure Protection Rules against XSS attacks Verify the created environment against XSS attacks Note:You are provided with access to an OCI Tenancy, an assigned compartment, and OCI credentials. Throughout your exam, ensure to use the assigned Compartment 99233424-C01 and Region us-ashburn-1. Complete the following task in the provisioned OCI environment: You will connect to the web server and append an XSS script. The protection rule will evaluate the requests and respond accordingly. SOLUTION: From the navigation menu, select Networking and then click Load Balancer. From the left navigation pane, under List Scope, select <your working compartment> from the drop-down menu. Select the load balancer IAD-SP-PBT-VM-01. Note down the Public IP address. Open a web browser and enter the URL http://<Public IP of IAD-SP-PBT-VM-01>. Verify the text in index.html is displayed: arduino 129.153.147.141 You are visiting WAF Based Web Server 1 Now enter the following URL: less http://Public IP of IAD-SP-PBT-VM-01/index.html? arduino 129.153.147.141 Service Unavailable; Web Server is secured against XSS attacks. This format keeps the instructions intact while preserving the original content.
Major
6 months agoLeah
6 months agoMelita
7 months agoMajor
7 months agoLeah
7 months agoMajor
7 months ago