Deny Rule Group – (default) Header Name Sanity

SANITY_HEADER_NAME

  • Prevents injection of special encoded characters in header names.

Included Deny Rules

Rule name

Basic

Standard

Strict

(default 16) Non-printable characters in header name rule

(default SAN_025e) Enforce alphanumeric characters in HTTP header name

Icon - ON

Icon - ON

Icon - ON

(default SAN_055e) Header name longer than 60 characters

Icon - ON

Icon - ON