ET POLICY Outgoing Basic Auth Base64 HTTP Password detected unencrypted

SID: 2006380Rev: 1716 views
History
Sourceet/open
CreatedJuly 30, 2010
UpdatedAugust 7, 2024
Classificationpolicy-violation
alert http $HOME_NET any -> any any (msg:"ET POLICY Outgoing Basic Auth Base64 HTTP Password detected unencrypted"; flow:established,to_server; threshold:type both, count 1, seconds 300, track by_src; http.header; content:"Authorization|3a 20|Basic"; nocase; content:!"YW5vbnltb3VzOg=="; within:32; content:!"Proxy-Authorization|3a 20|Basic"; nocase; content:!"KG51bGwpOihudWxsKQ=="; classtype:policy-violation; sid:2006380; rev:17; metadata:created_at 2010_07_30, performance_impact Significant, confidence Medium, signature_severity Informational, updated_at 2024_08_07;)

Metadata

created at2010_07_30
performance impactSignificant
confidenceMedium
signature severityInformational
updated at2024_08_07

Comments (0)

Please sign in to leave a comment.
Sign in

No comments yet. Be the first to comment!