What is the Overall WAF Security Level on the WebOrion™ Protector?
You can adjust the sensitivity level of the WebOrion™ Protector WAF using the Overall WAF Security Level to reduce the number of false positives that you or your visitors may be encountering on your website. For a complete explanation of false positives, please see this article.
The current list of WAF security levels include:
- Medium (Default):
The default setting provides adequate security against many generic web application threats and vulnerabilities. The WAF will only block any high-risk behaviour that we detect going to your site. We recommend this setting for most users.
This setting slightly lowers the level of security, but significantly lowers the chances of your actual visitors being blocked by the WAF. If you or your visitors are experiencing a rather large volume of false positives, you may consider switching the WAF to this setting.
- Very Low:
This setting tunes the WAF to only block the most suspicious of requests. You may switch the WAF to this setting if you want to ensure zero interruption to your site.
The WAF will block any medium-risk and high-risk behaviour that we detect going to your site. Additionally, the WAF will also block any sensitive information or source code that may be leaked to attackers. This setting makes your site more secure, but may result in a greater number of false positives.
- Very High:
The WAF will block most generic web application attacks and vulnerabilities, preventing attackers from penetrating and scanning for potential vulnerabilities on your website. However, this setting may result in a high number of false positives to your visitors.
As mentioned above, we recommend the default level of Medium to most users. If you are encountering frequent false positives, you may wish to turn your security level to Low.