Help Center>
Web Application Firewall>
Best Practices>
Configuring Protection Policies>
Configuring CC Attack Protection>
Restricting Malicious Requests in Promotions by Using Cookies and HWWAFSESID
Updated on 2024-02-29 GMT+08:00
Restricting Malicious Requests in Promotions by Using Cookies and HWWAFSESID
This topic describes how to configure cookies and HWWAFSESID fields in CC attack protection rules to restrict malicious requests in promotions.
Application Scenarios
- Scenario 1: To steal extra bonus (such as goods in promotions or downloads), a malicious actor may use the same account to send requests to a website by changing IP addresses or terminals.
Protective measures: Using Cookies (or User IDs) to Configure a Path-based CC Attack Protection Rule
- Scenario 2: To steal extra bonus (such as goods in promotions or downloads), a malicious actor may use multiple accounts to send requests to a website through the same PC by frequently changing its IP address.
Protective measures: Using HWWAFSESID to Configure a CC Attack Protection Rule
Using Cookies (or User IDs) to Configure a Path-based CC Attack Protection Rule
- Log in to the management console and connect your website to WAF. For details, see Adding a Domain Name to WAF.
- In the Policy column of the row containing the domain name, click the number to go to the Policies page.
- In the CC Attack Protection configuration area, toggle CC Attack Protection on if needed. Then, click Customize Rule.
Figure 1 CC Attack Protection configuration area
- In the upper left corner of the CC Attack Protection page, click Add Rule.
- Configure a CC attack protection rule using a cookie or user ID to limit traffic to the path. Figure 2 shows an example.
- Click Confirm.
Using HWWAFSESID to Configure a CC Attack Protection Rule
- Log in to the management console and connect your website to WAF. For details, see Adding a Domain Name to WAF.
- In the Policy column of the row containing the domain name, click the number to go to the Policies page.
- In the CC Attack Protection configuration area, toggle CC Attack Protection on (
) if needed. Then, click Customize Rule.
Figure 3 CC Attack Protection configuration area
- In the upper left corner of the CC Attack Protection page, click Add Rule.
- Configure a CC attack protection rule using HWWAFSESID to limit traffic to the path. For details, see Figure 4.
- User Identifier: Select Cookie and set it to HWWAFSESID.
- Other parameters: Set them to meet your service requirements.
- Click Confirm.
Parent topic: Configuring CC Attack Protection
Feedback
Was this page helpful?
Provide feedbackThank you very much for your feedback. We will continue working to improve the documentation.
The system is busy. Please try again later.
