yexinru/doc-exports
1
0
Fork 0
forked from docs/doc-exports
Code Pull Requests Activity
Files
main
doc-exports/docs/dbss/umn/dbss_01_0191.html
qinweiwei a42c766ca4 DBSS usermanual 20250429 version 
Reviewed-by: Rogal, Marcel <mrogal@noreply.gitea.eco.tsi-dev.otc-service.com>
Co-authored-by: qinweiwei <qinweiwei@huawei.com>
Co-committed-by: qinweiwei <qinweiwei@huawei.com>
2025-06-25 06:40:13 +00:00

86 lines
11 KiB
HTML
Raw Permalink Blame History

<a name="dbss_01_0191"></a><a name="dbss_01_0191"></a>
<h1 class="topictitle1">Enabling or Disabling SQL Injection Detection</h1>
<div id="body1544595038629"><p id="dbss_01_0191__p1017817191211">SQL injection detection is enabled by default. You can disable or enable the detection rules.</p>
<div class="notice" id="dbss_01_0191__note1487435121118"><span class="noticetitle"><img src="public_sys-resources/notice_3.0-en-us.png"> </span><div class="noticebody"><p id="dbss_01_0191__p1874158110">One piece of audited data can match only one SQL injection detection rule.</p>
</div></div>
<div class="section" id="dbss_01_0191__section070891116319"><h4 class="sectiontitle">Prerequisites</h4><ul id="dbss_01_0191__ul13013312410"><li id="dbss_01_0191__li13101311175116">You have applied for a database audit instance and the <strong id="dbss_01_0191__en-us_topic_0144723368_b1155217115215">Status</strong> is <strong id="dbss_01_0191__en-us_topic_0144723368_b185532015214">Running</strong>.</li><li id="dbss_01_0191__li16584192324813">You can enable SQL injection detection when the status is <strong id="dbss_01_0191__b13859634813">Disabled</strong>.</li><li id="dbss_01_0191__li34313113498">You can disable SQL injection detection when the status is <strong id="dbss_01_0191__b1816620254920">Enabled</strong>.</li></ul>
</div>
<div class="section" id="dbss_01_0191__section1466619111369"><h4 class="sectiontitle">Disabling SQL Injection Detection</h4><p id="dbss_01_0191__p158374116466">SQL injection detection is enabled by default. You can disable the detection rules as required. When an SQL injection detection rule is disabled, the audit rule does not take effect.</p>
<ol id="dbss_01_0191__ol18449141653"><li id="dbss_01_0191__li1896224713913"><span>Log in to the management console.</span></li><li id="dbss_01_0191__li199221335798"><span>Select a region, click <span><img id="dbss_01_0191__dbss_01_0204_dbss_01_0186_image12421104763114" src="en-us_image_0000001074398929.png"></span>, and choose <span class="menucascade" id="dbss_01_0191__dbss_01_0204_dbss_01_0186_menucascade1215612612394"><b><span class="uicontrol" id="dbss_01_0191__dbss_01_0204_dbss_01_0186_uicontrol415682653911">Security</span></b> &gt; <b><span class="uicontrol" id="dbss_01_0191__dbss_01_0204_dbss_01_0186_uicontrol2156182620396">Database Security Service</span></b></span>. The <strong id="dbss_01_0191__dbss_01_0204_dbss_01_0186_b6156926113915">Dashboard</strong> page is displayed.</span></li><li id="dbss_01_0191__li192117711183"><span>In the navigation tree on the left, choose <strong id="dbss_01_0191__b933087102117">Audit Rules</strong>.</span></li><li id="dbss_01_0191__li168521066525"><span>In the <strong id="dbss_01_0191__b198745614308">Instance</strong> drop-down list, select the instance for which you want to disable SQL injection detection.</span></li><li id="dbss_01_0191__li4174122125815"><span>Click the <strong id="dbss_01_0191__b38643733115">SQL Injection</strong> tab.</span><p><div class="note" id="dbss_01_0191__note8854192315450"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="dbss_01_0191__p38556230450">Only user-defined rules can be edited and deleted. Default rules can only be enabled and disabled.</p>
</div></div>
</p></li><li id="dbss_01_0191__li332110461716"><span>Locate the SQL injection rule you want to disable, and click <strong id="dbss_01_0191__b131117324173">Disable</strong> in the <strong id="dbss_01_0191__b18111732111715">Operation</strong> column.</span><p><div class="fignone" id="dbss_01_0191__fig148017166466"><span class="figcap"><b>Figure 1 </b>Disabling an SQL injection detection rule</span><br><span><img id="dbss_01_0191__image27002016151616" src="en-us_image_0000001127129398.png"></span></div>
<p id="dbss_01_0191__p332210469113">When the status of an SQL injection detection rule is <strong id="dbss_01_0191__b1339113964218">Disabled</strong>, SQL injection detection is disabled successfully.</p>
</p></li><li id="dbss_01_0191__li1097814118447"><span>In the <strong id="dbss_01_0191__b1624519149194">Operation</strong> column of a rule, click <strong id="dbss_01_0191__b52683176197">Edit</strong>. Configure parameters and click <strong id="dbss_01_0191__b17161172191917">OK</strong>.</span><p><div class="fignone" id="dbss_01_0191__fig1448418914912"><span class="figcap"><b>Figure 2 </b>Editing an SQL injection rule</span><br><span><img id="dbss_01_0191__image65661024101811" src="en-us_image_0000001671055773.png"></span></div>
<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="dbss_01_0191__table14709144861013" frame="border" border="1" rules="all"><caption><b>Table 1 </b>SQL injection rule parameters</caption><thead align="left"><tr id="dbss_01_0191__row27104486104"><th align="left" class="cellrowborder" valign="top" width="14.431443144314432%" id="mcps1.3.4.3.7.2.2.2.4.1.1"><p id="dbss_01_0191__p1710104815102">Parameter</p>
</th>
<th align="left" class="cellrowborder" valign="top" width="52.235223522352236%" id="mcps1.3.4.3.7.2.2.2.4.1.2"><p id="dbss_01_0191__p1671054861012">Description</p>
</th>
<th align="left" class="cellrowborder" valign="top" width="33.33333333333333%" id="mcps1.3.4.3.7.2.2.2.4.1.3"><p id="dbss_01_0191__p37101448201010">Example Value</p>
</th>
</tr>
</thead>
<tbody><tr id="dbss_01_0191__row1710748151012"><td class="cellrowborder" valign="top" width="14.431443144314432%" headers="mcps1.3.4.3.7.2.2.2.4.1.1 "><p id="dbss_01_0191__p12710114815102">Name</p>
</td>
<td class="cellrowborder" valign="top" width="52.235223522352236%" headers="mcps1.3.4.3.7.2.2.2.4.1.2 "><p id="dbss_01_0191__p571084815102">Name of an SQL rule.</p>
</td>
<td class="cellrowborder" valign="top" width="33.33333333333333%" headers="mcps1.3.4.3.7.2.2.2.4.1.3 "><p id="dbss_01_0191__p167107484102">Postal Code SQL injection Rule</p>
</td>
</tr>
<tr id="dbss_01_0191__row57101948191017"><td class="cellrowborder" valign="top" width="14.431443144314432%" headers="mcps1.3.4.3.7.2.2.2.4.1.1 "><p id="dbss_01_0191__p1971084811015">Risk Level</p>
</td>
<td class="cellrowborder" valign="top" width="52.235223522352236%" headers="mcps1.3.4.3.7.2.2.2.4.1.2 "><p id="dbss_01_0191__p6040559116304">Level of risks matching a SQL rule. Its value can be:</p>
<ul id="dbss_01_0191__ul155751241152314"><li id="dbss_01_0191__li175751416235"><strong id="dbss_01_0191__b3332857114">High</strong></li><li id="dbss_01_0191__li105757413233"><strong id="dbss_01_0191__b13769128133114">Moderate</strong></li><li id="dbss_01_0191__li185757413236"><strong id="dbss_01_0191__b116171184116">Low</strong></li><li id="dbss_01_0191__li157519418234"><strong id="dbss_01_0191__b11277122513117">No risk</strong></li></ul>
</td>
<td class="cellrowborder" valign="top" width="33.33333333333333%" headers="mcps1.3.4.3.7.2.2.2.4.1.3 "><p id="dbss_01_0191__p3710134812101"><strong id="dbss_01_0191__b15700162811118">Moderate</strong></p>
</td>
</tr>
<tr id="dbss_01_0191__row371084871016"><td class="cellrowborder" valign="top" width="14.431443144314432%" headers="mcps1.3.4.3.7.2.2.2.4.1.1 "><p id="dbss_01_0191__p2710124819109">Status</p>
</td>
<td class="cellrowborder" valign="top" width="52.235223522352236%" headers="mcps1.3.4.3.7.2.2.2.4.1.2 "><p id="dbss_01_0191__p153321841736">Enables or disables an SQL injection rule.</p>
<ul id="dbss_01_0191__ul934875119443"><li id="dbss_01_0191__li1392516571914"><span><img id="dbss_01_0191__image12885162119198" src="en-us_image_0000001671056613.png"></span>: enabled</li><li id="dbss_01_0191__li102256251195"><span><img id="dbss_01_0191__image19829203211913" src="en-us_image_0000001671056725.png"></span>: disabled</li></ul>
</td>
<td class="cellrowborder" valign="top" width="33.33333333333333%" headers="mcps1.3.4.3.7.2.2.2.4.1.3 "><p id="dbss_01_0191__p17710124881011"></p>
<p id="dbss_01_0191__p15824135401917"><span><img id="dbss_01_0191__image6131115517191" src="en-us_image_0000001622617012.png"></span></p>
<p id="dbss_01_0191__p73991745191014"></p>
</td>
</tr>
<tr id="dbss_01_0191__row1771094861019"><td class="cellrowborder" valign="top" width="14.431443144314432%" headers="mcps1.3.4.3.7.2.2.2.4.1.1 "><p id="dbss_01_0191__p9710154811108">Test Regular Expression</p>
</td>
<td class="cellrowborder" valign="top" width="52.235223522352236%" headers="mcps1.3.4.3.7.2.2.2.4.1.2 "><p id="dbss_01_0191__p671074813103">Regular expression that checks for content in certain pattern.</p>
</td>
<td class="cellrowborder" valign="top" width="33.33333333333333%" headers="mcps1.3.4.3.7.2.2.2.4.1.3 "><p id="dbss_01_0191__p735111694316">^\d{6}$</p>
</td>
</tr>
<tr id="dbss_01_0191__row1271011485107"><td class="cellrowborder" valign="top" width="14.431443144314432%" headers="mcps1.3.4.3.7.2.2.2.4.1.1 "><p id="dbss_01_0191__p14710204861015">Data</p>
</td>
<td class="cellrowborder" valign="top" width="52.235223522352236%" headers="mcps1.3.4.3.7.2.2.2.4.1.2 "><p id="dbss_01_0191__p1661738172118">Content that matches the regular expression.</p>
<p id="dbss_01_0191__p1471012487105">Enter content and click <strong id="dbss_01_0191__b4641121893713">Test</strong> to verify that the regular expression works properly.</p>
</td>
<td class="cellrowborder" valign="top" width="33.33333333333333%" headers="mcps1.3.4.3.7.2.2.2.4.1.3 "><p id="dbss_01_0191__p7710448101018">628307</p>
</td>
</tr>
<tr id="dbss_01_0191__row1710164871010"><td class="cellrowborder" valign="top" width="14.431443144314432%" headers="mcps1.3.4.3.7.2.2.2.4.1.1 "><p id="dbss_01_0191__p1710648131012">Result</p>
</td>
<td class="cellrowborder" valign="top" width="52.235223522352236%" headers="mcps1.3.4.3.7.2.2.2.4.1.2 "><p id="dbss_01_0191__p588013323212">Test result. It can be:</p>
<ul id="dbss_01_0191__ul12565111265512"><li id="dbss_01_0191__li85653127552">Hit</li><li id="dbss_01_0191__li195669121551">Miss<div class="note" id="dbss_01_0191__note168861814112310"><span class="notetitle"> NOTE: </span><div class="notebody"><p id="dbss_01_0191__p10886714162318">If the test result is <strong id="dbss_01_0191__b16149133155319">Hit</strong>, the regular expression is correct.</p>
<p id="dbss_01_0191__p20770152122418">If the test result is <span class="wintitle" id="dbss_01_0191__wintitle87027534249"><b>Miss</b></span>, the regular expression is incorrect.</p>
</div></div>
</li></ul>
</td>
<td class="cellrowborder" valign="top" width="33.33333333333333%" headers="mcps1.3.4.3.7.2.2.2.4.1.3 "><p id="dbss_01_0191__p107101648171010">Hit</p>
</td>
</tr>
</tbody>
</table>
</div>
</p></li><li id="dbss_01_0191__li663615172618"><span>In the <strong id="dbss_01_0191__b28251713583">Operation</strong> column, click <strong id="dbss_01_0191__b1488141535816">Delete</strong>.</span></li></ol>
</div>
<div class="section" id="dbss_01_0191__section116222113496"><h4 class="sectiontitle">Follow-Up Procedure</h4><div class="p" id="dbss_01_0191__p1454617279493">To restart an SQL injection detection rule, click <strong id="dbss_01_0191__b58815373196">Enable</strong> in the <strong id="dbss_01_0191__b6881123713196">Operation</strong> column of the target rule.<div class="fignone" id="dbss_01_0191__fig185497132517"><span class="figcap"><b>Figure 3 </b>Enabling an SQL injection detection rule</span><br><span><img id="dbss_01_0191__image124587555187" src="en-us_image_0000001173169443.png"></span></div>
</div>
<p id="dbss_01_0191__p089114510523">When the status of an SQL injection detection rule is <strong id="dbss_01_0191__b189205619564">Enabled</strong>, SQL injection detection is enabled successfully.</p>
</div>
</div>
View Git Blame Copy Permalink