100096HTML in Firewall Logs

firewall
#1

I’m Still getting hundreds of these 100096HTML events in my firewall log each and every day.
Its making it difficult to review my logs properly as I have to page through around 15 pages a day of events.

My previous post about this was here 100096HTML Simulate

It wasn’t resolved however.

Every firewall event for code 100096HTML is always a GET on an image.

it says :
Type - waf
User Agent - YahooCacheSystem; YahooWebServiceClient

Some of the rules triggered are

100096HTML | Html tag “” in | Cloudflare Specials
100096BASE | Generic markup language tag “” in | Cloudflare Specials
981018 | End XSS pattern check | OWASP XSS Attacks

In the match triggered it says :

100096BASE_MATCHED_VAR=https://images.search.yahoo.com/images/view;_ylt=awreznxtq1tcu4saxewinilq;_ylu=x3odmtiyngs4aws4bhnlywnzcgrzbgsdaw1nbg9pzamwmtlmnmu3yzc5mmm5yzjmzgvkzgu3oddjyju0mtg4oarncg9zazieaxqdymluzw

0 Likes

closed #2

This topic was automatically closed after 30 days. New replies are no longer allowed.

0 Likes