This post explains the different types of malicious requests/queries that can be scanned and blocked by BBQ Pro.
Request Variables
BBQ Pro protects your site by checking the following aspects of incoming requests:
- Request URI
- Query String
- User Agent
- IP Address
- Referrer
IP matching supports single addresses and IP blocks.
Request Types
BBQ Pro protects against attacks in virtually all types of requests, including:
- GET
- POST
- PUT
- DELETE
- HEAD
- OPTIONS
- TRACE
- CONNECT
- UPDATE
Check out a complete list of Apache Request Method Types »
Request Properties
BBQ Pro also enables protection for the following request properties:
- Block excessively long requests (optional)
- Check both lowercase and uppercase patterns
- Check both encoded and unencoded patterns (strict mode, optional)
Also scans arrays when included in the query-string!
Blocked Patterns
BBQ Pro includes three sets of patterns that may be enabled:
For more information, check out the BBQ Pro Docs and BBQ Pro Homepage »