Question
How to address the security alerts
Daily plenty of security alerts (SECU0001 & SECU0008) are getting logged in alert logs.
SECU0001:-
>> Unexpected properties received in HTTP request : URLAccessDetail ActionTampered Unknown reason
>Unexpected properties received in HTTP request : The following unexpected properties were received in an HTTP request for Thread TABTHREAD1: Declare_pyDisplay.pyDCDisplayState.pyActiveDocumentType
SECU0008:-
Cross Site Request Forgery attack detected and was blocked : URLAccessDetail CSRFAttack Invalid harness ID HID20EAE61BC66F56A8370E25C0CFE498FD.
Any pattern to find the cause of them ? How to address them ?
Thanks,
Brahmesh.
Brahmesh
You may want to check out the discussion at https://pdn.pega.com/community/pega-product-support/question/understanding-secu0008-alert for more information on the alerts. This discussion includes how to turn off the checking which causes the alerts and why you may not to do so.
Matt