FuseGuard Logo

fuseguard.components.filters
Component DictionaryAttackFilter

filters.BaseFilter
  |
  +--filters.DictionaryAttackFilter

Detects Repeated Requests Containing Passwords

Method Summary
public any init(any firewallInstance)
          Called Once On Application Initialization
public array getConfigurables()
          Returns a list of configurable properties
public string getDescription()
public boolean getIgnoreEmptyValues()
          Returns value of IgnoreEmptyValues setting.
public string getName()
public string getThreatCategory()
          Returns authentication
public boolean getUseIPListManager()
          Returns if IP List Manager will be used.
public numeric inspectRequest()
          Looks for password var names
public void purgeExpired()
          purges log of attackers
public void setExpiresAfter(numeric expireAfter)
          Number of seconds before the attack counter is reset. If set to zero it never resets. You may not want to set to zero because it may cause the filter to consume to use too much ram.
public void setIgnoreEmptyValues([boolean ignore="true"])
          Ignore variables that have empty values.
public void setIPList([any ipList])
          Select an IP list that contains.
public void setMaximumAttempts(numeric maximumAttempts)
          Sets the maximum number of requests that can be made containing a password. The counter expires after the value specified in the setExpireAfter function
public void setUseIPListManager(boolean value)
          When set to true uses IP List Manager to log offending IPs.

Methods inherited from filters.BaseFilter
setAllowURIList, blockEnabled, ignoresVariable, setIgnoreURIList, setScopes, inspectsRequestBody, inspectsCGIScope, inspectsUrlScope, setFilterLevel, setAllowDenyOrder, filterVariables, denyURI, getFilterID, inspectsRequest, setFilterWhitelist, ignoreVariable, ignoreURI, getHelp, inspectVariables, getFilterComponent, getRequestLogMessageDetail, inspectsCookieScope, allowURI, setLogLevel, getBlockLevel, inspectsURI, logEnabled, hasIPWhiteList, getFilterInstanceName, filterEnabled, filterRequest, getIPWhiteListProvider, setFilterID, getFilterLevel, inspectResponse, logOnly, setIgnoreVariableList, setRequestLogMessage, setBlockLevel, setFilterInstanceName, inspectVariable, inspectsFormScope, getLogLevel, getRequestLogMessage, getFirewall
 

Method Detail

getConfigurables

public array getConfigurables()
Returns a list of configurable properties


getDescription

public string getDescription()

getIgnoreEmptyValues

public boolean getIgnoreEmptyValues()
Returns value of IgnoreEmptyValues setting.


getName

public string getName()

getThreatCategory

public string getThreatCategory()
Returns authentication


getUseIPListManager

public boolean getUseIPListManager()
Returns if IP List Manager will be used.


init

public any init(any firewallInstance)
Called Once On Application Initialization

Parameters:
any firewallInstance

inspectRequest

public numeric inspectRequest()
Looks for password var names


purgeExpired

public void purgeExpired()
purges log of attackers


setExpiresAfter

public void setExpiresAfter(numeric expireAfter)
Number of seconds before the attack counter is reset. If set to zero it never resets. You may not want to set to zero because it may cause the filter to consume to use too much ram.

Parameters:
numeric expireAfter - Seconds

setIgnoreEmptyValues

public void setIgnoreEmptyValues([boolean ignore="true"])
Ignore variables that have empty values.

Parameters:
[boolean ignore="true"]

setIPList

public void setIPList([any ipList])
Select an IP list that contains.

Parameters:
[any ipList]

setMaximumAttempts

public void setMaximumAttempts(numeric maximumAttempts)
Sets the maximum number of requests that can be made containing a password. The counter expires after the value specified in the setExpireAfter function

Parameters:
numeric maximumAttempts

setUseIPListManager

public void setUseIPListManager(boolean value)
When set to true uses IP List Manager to log offending IPs.

Parameters:
boolean value