summaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorJIAO <JIAO@DESKTOP-Q4S6VOM>2022-12-02 16:57:55 +0800
committerJIAO <JIAO@DESKTOP-Q4S6VOM>2022-12-02 16:57:55 +0800
commit939edc0253a4eadb57931cf13dbcc8afc48bcf1f (patch)
tree2adc19987efdd1ca1e8da0ad0d438e3ea79dd8a7
parentee422ebc9cbd29d0f4734e91c3a5faa29b027369 (diff)
parent55f795dbfdb01552cfea8cc22a008723f7b42443 (diff)
Merge branch 'develop' of https://git.mesalab.cn/dongxiaoyan/gap_tsg_api.git into develop
Diffstat
-rw-r--r--case/policies/proxy/http.robot24
-rw-r--r--case/policies/security/ftp.robot80
-rw-r--r--case/policies/security/http.robot207
-rw-r--r--case/policies/security/mail.robot49
-rw-r--r--case/policies/security/sip.robot42
-rw-r--r--case/policies/security/ssl.robot50
-rw-r--r--control/business.py22
-rw-r--r--keyword/common/functional_keywords.robot1
-rw-r--r--keyword/objects/object.robot5
-rw-r--r--keyword/policys/policy.robot23
-rw-r--r--other/data/proxy/http/proxy-http-ipv6-allow-fqdn-url-reqheader-resheader-data.yaml76
-rw-r--r--other/data/proxy/http/proxy-http-ipv6-deny-fqdn-url-reqheader-resheader-data.yaml71
-rw-r--r--other/data/proxy/http/proxy-http-ipv6-hijack-url-resheader-data.yaml57
-rw-r--r--other/data/proxy/http/proxy-http-ipv6-insert-url-fqdn-data.yaml56
-rw-r--r--other/data/proxy/http/proxy-http-ipv6-replace-url-reqheader-data.yaml57
-rw-r--r--other/data/proxy/http/proxy-http-ipv6-run_script-host-url-reqheader-resheader-data.yaml74
-rw-r--r--other/data/proxy/http/proxy-http-run_script-host-url-data.yaml56
-rw-r--r--other/data/proxy/http/proxy-http-run_script-host-url-reqheader-data.yaml128
-rw-r--r--other/data/proxy/http/proxy-http-run_script-host-url-reqheader-resheader-data.yaml74
-rw-r--r--other/data/proxy/http/proxy-http-run_script-host-url-resheader-data.yaml65
-rw-r--r--other/data/proxy/http/proxy-http-run_script-url-data.yaml233
-rw-r--r--other/data/security/dingding/security-dingding-deny-only-IpAndApplication-call-data.yaml8
-rw-r--r--other/data/security/dns/security-dns-allow-fqdn-exactly-data.yaml96
-rw-r--r--other/data/security/dns/security-dns-allow-fqdn-suffix-data.yaml83
-rw-r--r--other/data/security/dns/security-dns-allow-only-ipAndApplication-data.yaml66
-rw-r--r--other/data/security/dns/security-dns-deny-fqdn-exactly-data.yaml190
-rw-r--r--other/data/security/dns/security-dns-deny-fqdn-suffix-data.yaml98
-rw-r--r--other/data/security/dns/security-dns-deny-only-IpAndApplication-data.yaml19
-rw-r--r--other/data/security/dns/security-dns-monitor-fqdn-exactly-data.yaml71
-rw-r--r--other/data/security/dns/security-dns-monitor-fqdn-suffix-data.yaml2
-rw-r--r--other/data/security/dns/security-dns-monitor-only-application-data.yaml74
-rw-r--r--other/data/security/dns/security-dns-monitor-only-ipAndApplication-data.yaml43
-rw-r--r--other/data/security/ftp/security-ftp-allow-account-content-data.yaml49
-rw-r--r--other/data/security/ftp/security-ftp-allow-account-exactly-data.yaml41
-rw-r--r--other/data/security/ftp/security-ftp-allow-account-prefix-data.yaml41
-rw-r--r--other/data/security/ftp/security-ftp-allow-account-substring-data.yaml41
-rw-r--r--other/data/security/ftp/security-ftp-allow-account-suffix-data.yaml41
-rw-r--r--other/data/security/ftp/security-ftp-allow-content-exactly-data.yaml41
-rw-r--r--other/data/security/ftp/security-ftp-allow-content-prefix-data.yaml41
-rw-r--r--other/data/security/ftp/security-ftp-allow-content-substring-data.yaml41
-rw-r--r--other/data/security/ftp/security-ftp-allow-content-suffix-data.yaml41
-rw-r--r--other/data/security/ftp/security-ftp-allow-only-ipAndApplication-data.yaml40
-rw-r--r--other/data/security/ftp/security-ftp-allow-uri-account-content-data.yaml57
-rw-r--r--other/data/security/ftp/security-ftp-allow-uri-account-data.yaml49
-rw-r--r--other/data/security/ftp/security-ftp-allow-uri-content-data.yaml49
-rw-r--r--other/data/security/ftp/security-ftp-allow-uri-exactly-data.yaml41
-rw-r--r--other/data/security/ftp/security-ftp-allow-uri-prefix-data.yaml41
-rw-r--r--other/data/security/ftp/security-ftp-allow-uri-substring-data.yaml41
-rw-r--r--other/data/security/ftp/security-ftp-allow-uri-suffix-data.yaml41
-rw-r--r--other/data/security/ftp/security-ftp-deny-account-exactly-data.yaml14
-rw-r--r--other/data/security/ftp/security-ftp-deny-account-prefix-data.yaml58
-rw-r--r--other/data/security/ftp/security-ftp-deny-account-substring-data.yaml9
-rw-r--r--other/data/security/ftp/security-ftp-deny-account-suffix-data.yaml4
-rw-r--r--other/data/security/ftp/security-ftp-deny-content-exactly-data.yaml14
-rw-r--r--other/data/security/ftp/security-ftp-deny-content-prefix-data.yaml7
-rw-r--r--other/data/security/ftp/security-ftp-deny-content-substring-data.yaml9
-rw-r--r--other/data/security/ftp/security-ftp-deny-content-suffix-data.yaml57
-rw-r--r--other/data/security/ftp/security-ftp-deny-only-IpAndApplication-data.yaml16
-rw-r--r--other/data/security/ftp/security-ftp-deny-uri-exactly-data.yaml22
-rw-r--r--other/data/security/ftp/security-ftp-deny-uri-prefix-data.yaml102
-rw-r--r--other/data/security/ftp/security-ftp-deny-uri-substring-data.yaml58
-rw-r--r--other/data/security/ftp/security-ftp-deny-uri-suffix-data.yaml50
-rw-r--r--other/data/security/ftp/security-ftp-monitor-account-exactly-data.yaml41
-rw-r--r--other/data/security/ftp/security-ftp-monitor-ftp-log-verify-data.yaml68
-rw-r--r--other/data/security/http/monitor_http_data.yaml2
-rw-r--r--other/data/security/http/security-http-allow-fqdn-reqbody-data.yaml50
-rw-r--r--other/data/security/http/security-http-allow-fqdn-reqheader-data.yaml50
-rw-r--r--other/data/security/http/security-http-allow-fqdn-reqheader-reqbody-data.yaml58
-rw-r--r--other/data/security/http/security-http-allow-fqdn-resbody-data.yaml49
-rw-r--r--other/data/security/http/security-http-allow-fqdn-resheader-data.yaml50
-rw-r--r--other/data/security/http/security-http-allow-fqdn-url-reqbody-resbody-data.yaml65
-rw-r--r--other/data/security/http/security-http-allow-fqdn-url-reqheader-resheader-data.yaml67
-rw-r--r--other/data/security/http/security-http-allow-fqdn-url-reqheader-resheader-reqbody-resbody-data.yaml83
-rw-r--r--other/data/security/http/security-http-allow-reqbody-resbody-data.yaml49
-rw-r--r--other/data/security/http/security-http-allow-reqbody-substring-data.yaml41
-rw-r--r--other/data/security/http/security-http-allow-reqheader-exactly-data.yaml42
-rw-r--r--other/data/security/http/security-http-allow-reqheader-prefix-data.yaml42
-rw-r--r--other/data/security/http/security-http-allow-reqheader-resheader-data.yaml51
-rw-r--r--other/data/security/http/security-http-allow-reqheader-resheader-reqbody-resbody-data.yaml67
-rw-r--r--other/data/security/http/security-http-allow-reqheader-substring-data.yaml42
-rw-r--r--other/data/security/http/security-http-allow-reqheader-suffix-data.yaml42
-rw-r--r--other/data/security/http/security-http-allow-resbody-substring-data.yaml41
-rw-r--r--other/data/security/http/security-http-allow-resheader-exactly-data.yaml42
-rw-r--r--other/data/security/http/security-http-allow-resheader-prefix-data.yaml42
-rw-r--r--other/data/security/http/security-http-allow-resheader-substring-data.yaml50
-rw-r--r--other/data/security/http/security-http-allow-resheader-suffix-data.yaml42
-rw-r--r--other/data/security/http/security-http-allow-url-reqbody-data.yaml49
-rw-r--r--other/data/security/http/security-http-allow-url-reqheader-data.yaml50
-rw-r--r--other/data/security/http/security-http-allow-url-resbody-data.yaml49
-rw-r--r--other/data/security/http/security-http-allow-url-resheader-data.yaml42
-rw-r--r--other/data/security/http/security-http-allow-url-resheader-resbody-data.yaml58
-rw-r--r--other/data/security/http/security-http-allow-url-suffix-data.yaml41
-rw-r--r--other/data/security/http/security-http-deny-fqdn-exactly-data.yaml146
-rw-r--r--other/data/security/http/security-http-deny-fqdn-suffix-data.yaml135
-rw-r--r--other/data/security/http/security-http-deny-fqdn-url-data.yaml57
-rw-r--r--other/data/security/http/security-http-deny-fqdn-url-reqheader-resheader-reqbody-resbody-data.yaml11
-rw-r--r--other/data/security/http/security-http-deny-only-IpAndApplication-data.yaml55
-rw-r--r--other/data/security/http/security-http-deny-reqheader-prefix-data.yaml22
-rw-r--r--other/data/security/http/security-http-deny-reqheader-substring-data.yaml19
-rw-r--r--other/data/security/http/security-http-deny-resheader-prefix-data.yaml11
-rw-r--r--other/data/security/http/security-http-deny-resheader-substring-data.yaml13
-rw-r--r--other/data/security/http/security-http-deny-url-exactly-data.yaml48
-rw-r--r--other/data/security/http/security-http-deny-url-exactly.yaml18
-rw-r--r--other/data/security/http/security-http-deny-url-prefix-data.yaml24
-rw-r--r--other/data/security/http/security-http-deny-url-resbody-substring-data.yaml10
-rw-r--r--other/data/security/http/security-http-deny-url-substring-data.yaml22
-rw-r--r--other/data/security/http/security-http-deny-url-suffix-data.yaml24
-rw-r--r--other/data/security/http/security-http-monitor-fqdn-url-reqheader-resheader-reqbody-resbody-data.yaml2
-rw-r--r--other/data/security/http/security-http-monitor-http-log-verify-data.yaml160
-rw-r--r--other/data/security/http/security-http-monitor-url-exactly-data.yaml8
-rw-r--r--other/data/security/http/security-http-monitor-url-prefix-data.yaml8
-rw-r--r--other/data/security/http/security-http-monitor-url-substring-data.yaml8
-rw-r--r--other/data/security/mail/security-mail-allow-account-excatly-data.yaml46
-rw-r--r--other/data/security/mail/security-mail-allow-account-prefix-data.yaml46
-rw-r--r--other/data/security/mail/security-mail-allow-account-substring-data.yaml46
-rw-r--r--other/data/security/mail/security-mail-allow-account-suffix-data.yaml48
-rw-r--r--other/data/security/mail/security-mail-allow-attachmentcontent-account-data.yaml54
-rw-r--r--other/data/security/mail/security-mail-allow-attachmentcontent-from-data.yaml54
-rw-r--r--other/data/security/mail/security-mail-allow-attachmentcontent-substring-data.yaml46
-rw-r--r--other/data/security/mail/security-mail-allow-attachmentcontent-to-data.yaml54
-rw-r--r--other/data/security/mail/security-mail-allow-attachmentname-account-data.yaml54
-rw-r--r--other/data/security/mail/security-mail-allow-attachmentname-attachmentcontent-data.yaml54
-rw-r--r--other/data/security/mail/security-mail-allow-attachmentname-exactly-data.yaml46
-rw-r--r--other/data/security/mail/security-mail-allow-attachmentname-from-data.yaml54
-rw-r--r--other/data/security/mail/security-mail-allow-attachmentname-prefix-data.yaml46
-rw-r--r--other/data/security/mail/security-mail-allow-attachmentname-substring-data.yaml46
-rw-r--r--other/data/security/mail/security-mail-allow-attachmentname-suffix-data.yaml46
-rw-r--r--other/data/security/mail/security-mail-allow-attachmentname-to-data.yaml54
-rw-r--r--other/data/security/mail/security-mail-allow-content-attachmentcontent-data.yaml54
-rw-r--r--other/data/security/mail/security-mail-allow-content-attachmentname-attachmentcontent-from-to-account-data.yaml86
-rw-r--r--other/data/security/mail/security-mail-allow-content-attachmentname-data.yaml54
-rw-r--r--other/data/security/mail/security-mail-allow-content-from-data.yaml54
-rw-r--r--other/data/security/mail/security-mail-allow-content-substring-data.yaml46
-rw-r--r--other/data/security/mail/security-mail-allow-content-to-data.yaml54
-rw-r--r--other/data/security/mail/security-mail-allow-contents-account-data.yaml54
-rw-r--r--other/data/security/mail/security-mail-allow-from-account-data.yaml54
-rw-r--r--other/data/security/mail/security-mail-allow-from-exactly-data.yaml46
-rw-r--r--other/data/security/mail/security-mail-allow-from-prefix-data.yaml46
-rw-r--r--other/data/security/mail/security-mail-allow-from-substring-data.yaml46
-rw-r--r--other/data/security/mail/security-mail-allow-from-suffix-data.yaml46
-rw-r--r--other/data/security/mail/security-mail-allow-from-to-data.yaml54
-rw-r--r--other/data/security/mail/security-mail-allow-only-ipAndApplication-data.yaml56
-rw-r--r--other/data/security/mail/security-mail-allow-subject-account-data.yaml54
-rw-r--r--other/data/security/mail/security-mail-allow-subject-attachmentcontent-data.yaml54
-rw-r--r--other/data/security/mail/security-mail-allow-subject-attachmentname-attachmentcontent-from-to-account-data.yaml86
-rw-r--r--other/data/security/mail/security-mail-allow-subject-attachmentname-data.yaml54
-rw-r--r--other/data/security/mail/security-mail-allow-subject-content-attachmentcontent-from-to-account-data.yaml86
-rw-r--r--other/data/security/mail/security-mail-allow-subject-content-attachmentname--from-to-account-data.yaml86
-rw-r--r--other/data/security/mail/security-mail-allow-subject-content-attachmentname-attachmentcontent-from-account-data.yaml86
-rw-r--r--other/data/security/mail/security-mail-allow-subject-content-attachmentname-attachmentcontent-from-to-data.yaml86
-rw-r--r--other/data/security/mail/security-mail-allow-subject-content-attachmentname-attachmentcontent-to-account-data.yaml86
-rw-r--r--other/data/security/mail/security-mail-allow-subject-content-data.yaml54
-rw-r--r--other/data/security/mail/security-mail-allow-subject-exactly-data.yaml46
-rw-r--r--other/data/security/mail/security-mail-allow-subject-from-data.yaml54
-rw-r--r--other/data/security/mail/security-mail-allow-subject-prefix-data.yaml46
-rw-r--r--other/data/security/mail/security-mail-allow-subject-substring-data.yaml46
-rw-r--r--other/data/security/mail/security-mail-allow-subject-suffix-data.yaml46
-rw-r--r--other/data/security/mail/security-mail-allow-subject-to-data.yaml54
-rw-r--r--other/data/security/mail/security-mail-allow-to-account-data.yaml54
-rw-r--r--other/data/security/mail/security-mail-allow-to-exactly-data.yaml46
-rw-r--r--other/data/security/mail/security-mail-allow-to-prefix-data.yaml46
-rw-r--r--other/data/security/mail/security-mail-allow-to-substring-data.yaml46
-rw-r--r--other/data/security/mail/security-mail-allow-to-suffix-data.yaml46
-rw-r--r--other/data/security/mail/security-mail-deny-account-exactly-data.yaml55
-rw-r--r--other/data/security/mail/security-mail-deny-account-prefix-data.yaml8
-rw-r--r--other/data/security/mail/security-mail-deny-account-substring-data.yaml8
-rw-r--r--other/data/security/mail/security-mail-deny-account-suffix-data.yaml8
-rw-r--r--other/data/security/mail/security-mail-deny-attachmentname-exactly-data.yaml47
-rw-r--r--other/data/security/mail/security-mail-deny-only-IpAndApplication-data.yaml115
-rw-r--r--other/data/security/mail/security-mail-deny-subject-exactly-data.yaml47
-rw-r--r--other/data/security/mail/security-mail-deny-subject-prefix-data.yaml47
-rw-r--r--other/data/security/mail/security-mail-deny-subject-substring-data.yaml45
-rw-r--r--other/data/security/mail/security-mail-deny-subject-suffix-data.yaml111
-rw-r--r--other/data/security/mail/security-mail-deny-to-exactly-data.yaml63
-rw-r--r--other/data/security/mail/security-mail-deny-to-prefix-data.yaml14
-rw-r--r--other/data/security/mail/security-mail-deny-to-substring-data.yaml14
-rw-r--r--other/data/security/mail/security-mail-deny-to-suffix-data.yaml14
-rw-r--r--other/data/security/mail/security-mail-monitor-only-IpAndApplication-data.yaml10
-rw-r--r--other/data/security/mail/security-monitor-mail-log-verify-data.yaml126
-rw-r--r--other/data/security/ssl/security-ssl-allow-cn-exactly-data.yaml12
-rw-r--r--other/data/security/ssl/security-ssl-allow-cn-suffix-data.yaml10
-rw-r--r--other/data/security/ssl/security-ssl-allow-san-exactly-data.yaml8
-rw-r--r--other/data/security/ssl/security-ssl-allow-san-suffix-data.yaml8
-rw-r--r--other/data/security/ssl/security-ssl-deny-ssl-signature-data.yaml261
-rw-r--r--other/data/security/ssl/security-ssl-monitor-fqdn-exactly-data.yaml59
-rw-r--r--other/data/security/ssl/security-ssl-monitor-fqdn-exactly-famousSites-data.yaml12
-rw-r--r--other/data/security/ssl/security-ssl-monitor-fqdn-suffix-data.yaml12
-rw-r--r--other/data/security/ssl/security-ssl-monitor-fqdn-suffix-famousSites-data.yaml57
-rw-r--r--other/data/security/youtube/security-youtube-allow-only-IpAndApplication-login-data.yaml2
-rw-r--r--other/data/security/youtube/security-youtube-allow-only-IpAndApplication-playVideo-data.yaml2
-rw-r--r--other/data/security/youtube/security-youtube-allow-only-IpAndApplication-search-data.yaml2
-rw-r--r--other/data/security/youtube/security-youtube-allow-only-IpAndApplication-subscribe-data.yaml2
-rw-r--r--other/data/security/youtube/security-youtube-allow-only-IpAndApplication-videoOperation-data.yaml2
-rw-r--r--other/data/security/youtube/security-youtube-deny-only-IpAndApplication-login-data.yaml8
-rw-r--r--other/data/security/youtube/security-youtube-deny-only-IpAndApplication-playVideo-data.yaml8
-rw-r--r--other/data/security/youtube/security-youtube-deny-only-IpAndApplication-search-data.yaml8
-rw-r--r--other/data/security/youtube/security-youtube-deny-only-IpAndApplication-subscribe-data.yaml8
-rw-r--r--other/data/security/youtube/security-youtube-deny-only-IpAndApplication-videoOperation-data.yaml8
-rw-r--r--other/data/security/youtube/security-youtube-monitor-only-IpAndApplication-login-data.yaml2
-rw-r--r--other/data/security/youtube/security-youtube-monitor-only-IpAndApplication-playVideo-data.yaml2
-rw-r--r--other/data/security/youtube/security-youtube-monitor-only-IpAndApplication-search-data.yaml2
-rw-r--r--other/data/security/youtube/security-youtube-monitor-only-IpAndApplication-subscribe-data.yaml2
-rw-r--r--other/data/security/youtube/security-youtube-monitor-only-IpAndApplication-videoOperation-data.yaml2
203 files changed, 9045 insertions, 614 deletions
diff --git a/case/policies/proxy/http.robot b/case/policies/proxy/http.robot
index 50c4795..d5c8772 100644
--- a/case/policies/proxy/http.robot
+++ b/case/policies/proxy/http.robot
@@ -60,6 +60,10 @@ allow-fqdn-url-reqheader-resheader
[Tags] MultiFilter Proxy
${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/proxy/http/proxy-http-allow-fqdn-url-reqheader-resheader-data.yaml ${TEST NAME}
+ipv6-allow-fqdn-url-reqheader-resheader
+ [Tags] MultiFilter Proxy Ipv6
+ ${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/proxy/http/proxy-http-ipv6-allow-fqdn-url-reqheader-resheader-data.yaml ${TEST NAME}
+
deny-fqdn-suffix
[Tags] SingleFiler Proxy
${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/proxy/http/proxy-http-deny-fqdn-suffix-data.yaml ${TEST NAME}
@@ -112,6 +116,10 @@ deny-resbody-substring
deny-fqdn-url-reqheader-resheader-reqbody-resbody
[Tags] MultiFilter Proxy
${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/proxy/http/proxy-http-deny-fqdn-url-reqheader-resheader-reqbody-resbody-data.yaml ${TEST NAME}
+
+ipv6-deny-fqdn-url-reqheader-resheader
+ [Tags] MultiFilter Proxy Ipv6
+ ${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/proxy/http/proxy-http-ipv6-deny-fqdn-url-reqheader-resheader-data.yaml ${TEST NAME}
monitor-fqdn-suffix
[Tags] SingleFiler Proxy
@@ -194,6 +202,10 @@ replace-url-reqheader
[Tags] MultiFilter Proxy
${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/proxy/http/proxy-http-replace-url-reqheader-data.yaml ${TEST NAME}
+ipv6-replace-url-reqheader
+ [Tags] MultiFilter Proxy Ipv6
+ ${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/proxy/http/proxy-http-ipv6-replace-url-reqheader-data.yaml ${TEST NAME}
+
replace-url-resheader
[Tags] MultiFilter Proxy
@@ -213,10 +225,18 @@ hijack-url-resheader
[Tags] MultiFilter Proxy
${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/proxy/http/proxy-http-hijack-url-resheader-data.yaml ${TEST NAME}
+ipv6-hijack-url-resheader
+ [Tags] MultiFilter Proxy Ipv6
+ ${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/proxy/http/proxy-http-ipv6-hijack-url-resheader-data.yaml ${TEST NAME}
+
insert-url-fqdn
[Tags] MultiFilter Proxy
${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/proxy/http/proxy-http-insert-url-fqdn-data.yaml ${TEST NAME}
+ipv6-insert-url-fqdn
+ [Tags] MultiFilter Proxy Ipv6
+ ${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/proxy/http/proxy-http-ipv6-insert-url-fqdn-data.yaml ${TEST NAME}
+
insert-url-reqheader
[Tags] MultiFilter Proxy
@@ -263,6 +283,10 @@ run_script-host-url-reqheader-resheader
[Tags] MultiFilter RunScript Proxy
${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/proxy/http/proxy-http-run_script-host-url-reqheader-resheader-data.yaml ${TEST NAME}
+ipv6-run_script-host-url-reqheader-resheader
+ [Tags] MultiFilter RunScript Proxy Ipv6
+ ${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/proxy/http/proxy-http-ipv6-run_script-host-url-reqheader-resheader-data.yaml ${TEST NAME}
+
diff --git a/case/policies/security/ftp.robot b/case/policies/security/ftp.robot
index ac74d4c..db22445 100644
--- a/case/policies/security/ftp.robot
+++ b/case/policies/security/ftp.robot
@@ -16,7 +16,7 @@ ${createObjectIds} ${EMPTY}
*** Test Cases ***
allow-only-IpAndApplication
- [Tags] OnlySourceAndApp
+ [Tags] OnlySourceAndApp Ipv6
${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/ftp/security-ftp-allow-only-ipAndApplication-data.yaml ${TEST NAME}
# allow-only-Application
@@ -24,23 +24,23 @@ allow-only-IpAndApplication
# ${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/ftp/security-ftp-allow-only-application-data.yaml ${TEST NAME}
allow-account-exactly
- [Tags] SingleFilter
+ [Tags] SingleFilter Ipv6
${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/ftp/security-ftp-allow-account-exactly-data.yaml ${TEST NAME}
allow-account-suffix
- [Tags] SingleFilter
+ [Tags] SingleFilter Ipv6
${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/ftp/security-ftp-allow-account-suffix-data.yaml ${TEST NAME}
allow-account-prefix
- [Tags] SingleFilter
+ [Tags] SingleFilter Ipv6
${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/ftp/security-ftp-allow-account-prefix-data.yaml ${TEST NAME}
allow-account-substring
- [Tags] SingleFilter
+ [Tags] SingleFilter Ipv6
${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/ftp/security-ftp-allow-account-substring-data.yaml ${TEST NAME}
allow-content-exactly
- [Tags] SingleFilter
+ [Tags] SingleFilter Ipv6
${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/ftp/security-ftp-allow-content-exactly-data.yaml ${TEST NAME}
allow-content-suffix
@@ -88,19 +88,19 @@ allow-uri-account-content
${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/ftp/security-ftp-allow-uri-account-content-data.yaml ${TEST NAME}
deny-reset-only-IpAndApplication
- [Tags] OnlySourceAndApp OnlyApplication
+ [Tags] OnlySourceAndApp OnlyApplication
${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/ftp/security-ftp-deny-only-IpAndApplication-data.yaml ${TEST NAME}
deny-rateLittle-only-IpAndApplication
- [Tags] OnlySourceAndApp OnlyApplication
+ [Tags] OnlySourceAndApp OnlyApplication
${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/ftp/security-ftp-deny-only-IpAndApplication-data.yaml ${TEST NAME}
deny-rateBig-only-IpAndApplication
- [Tags] OnlySourceAndApp OnlyApplication
+ [Tags] OnlySourceAndApp OnlyApplication
${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/ftp/security-ftp-deny-only-IpAndApplication-data.yaml ${TEST NAME}
deny-tamper-only-IpAndApplication
- [Tags] OnlySourceAndApp OnlyApplication
+ [Tags] OnlySourceAndApp OnlyApplication
${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/ftp/security-ftp-deny-only-IpAndApplication-data.yaml ${TEST NAME}
# deny-only-Application
@@ -164,91 +164,91 @@ deny-tamper-uri-exactly
${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/ftp/security-ftp-deny-uri-exactly-data.yaml ${TEST NAME}
deny-reset-content-suffix
- [Tags] Reset Tamper RateLimit
+ [Tags] Reset Tamper RateLimit
${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/ftp/security-ftp-deny-content-suffix-data.yaml ${TEST NAME}
deny-rateBig-content-suffix
- [Tags] Reset Tamper RateLimit
+ [Tags] Reset Tamper RateLimit
${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/ftp/security-ftp-deny-content-suffix-data.yaml ${TEST NAME}
deny-tamper-content-suffix
- [Tags] Reset Tamper RateLimit
+ [Tags] Reset Tamper RateLimit
${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/ftp/security-ftp-deny-content-suffix-data.yaml ${TEST NAME}
deny-reset-noLog-content-suffix
- [Tags] Reset Tamper RateLimit
+ [Tags] Reset Tamper RateLimit
${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/ftp/security-ftp-deny-content-suffix-data.yaml ${TEST NAME}
deny-reset-content-prefix
- [Tags] Reset Tamper RateLimit
+ [Tags] Reset Tamper RateLimit
${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/ftp/security-ftp-deny-content-prefix-data.yaml ${TEST NAME}
deny-tamper-content-prefix
- [Tags] Reset Tamper RateLimit
+ [Tags] Reset Tamper RateLimit
${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/ftp/security-ftp-deny-content-prefix-data.yaml ${TEST NAME}
deny-reset-content-substring
- [Tags] Reset Tamper RateLimit
+ [Tags] Reset Tamper RateLimit
${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/ftp/security-ftp-deny-content-substring-data.yaml ${TEST NAME}
deny-tamper-content-substring
- [Tags] Reset Tamper RateLimit
+ [Tags] Reset Tamper RateLimit
${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/ftp/security-ftp-deny-content-substring-data.yaml ${TEST NAME}
deny-reset-content-exactly
- [Tags] Reset Tamper RateLimit
+ [Tags] Reset Tamper RateLimit
${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/ftp/security-ftp-deny-content-exactly-data.yaml ${TEST NAME}
deny-rateBig-content-exactly
- [Tags] Reset Tamper RateLimit
+ [Tags] Reset Tamper RateLimit
${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/ftp/security-ftp-deny-content-exactly-data.yaml ${TEST NAME}
deny-tamper-content-exactly
- [Tags] Reset Tamper RateLimit
+ [Tags] Reset Tamper RateLimit
${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/ftp/security-ftp-deny-content-exactly-data.yaml ${TEST NAME}
deny-reset-account-suffix
- [Tags] Reset Tamper RateLimit
+ [Tags] Reset Tamper RateLimit
${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/ftp/security-ftp-deny-account-suffix-data.yaml ${TEST NAME}
deny-reset-update-rateLittle-account-prefix
- [Tags] Reset Tamper RateLimit
+ [Tags] Reset Tamper RateLimit
${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/ftp/security-ftp-deny-account-prefix-data.yaml ${TEST NAME}
deny-rateLittle-account-prefix
- [Tags] Reset Tamper RateLimit
+ [Tags] Reset Tamper RateLimit
${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/ftp/security-ftp-deny-account-prefix-data.yaml ${TEST NAME}
deny-rateBig-account-prefix
- [Tags] Reset Tamper RateLimit
+ [Tags] Reset Tamper RateLimit
${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/ftp/security-ftp-deny-account-prefix-data.yaml ${TEST NAME}
deny-tamper-account-prefix
- [Tags] Reset Tamper RateLimit
+ [Tags] Reset Tamper RateLimit
${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/ftp/security-ftp-deny-account-prefix-data.yaml ${TEST NAME}
deny-reset-account-substring
- [Tags] Reset Tamper RateLimit
+ [Tags] Reset Tamper RateLimit
${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/ftp/security-ftp-deny-account-substring-data.yaml ${TEST NAME}
deny-tamper-account-substring
- [Tags] Reset Tamper RateLimit
+ [Tags] Reset Tamper RateLimit
${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/ftp/security-ftp-deny-account-substring-data.yaml ${TEST NAME}
deny-reset-update-rateLittle-account-exactly
- [Tags] Reset Tamper RateLimit
+ [Tags] Reset Tamper RateLimit
${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/ftp/security-ftp-deny-account-exactly-data.yaml ${TEST NAME}
deny-rateBig-account-exactly
- [Tags] Reset Tamper RateLimit
+ [Tags] Reset Tamper RateLimit
${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/ftp/security-ftp-deny-account-exactly-data.yaml ${TEST NAME}
deny-tamper-account-exactly
- [Tags] Reset Tamper RateLimit
+ [Tags] Reset Tamper RateLimit
${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/ftp/security-ftp-deny-account-exactly-data.yaml ${TEST NAME}
monitor-uri-suffix
@@ -268,7 +268,7 @@ monitor-uri-exactly
${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/ftp/security-ftp-monitor-uri-exactly-data.yaml ${TEST NAME}
monitor-only-IpAndApplication
- [Tags] OnlySourceAndApp OnlyApplication
+ [Tags] OnlySourceAndApp OnlyApplication
${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/ftp/security-ftp-monitor-only-IpAndApplication-data.yaml ${TEST NAME}
# monitor-only-Application
@@ -277,36 +277,36 @@ monitor-only-IpAndApplication
monitor-content-suffix
- [Tags] Reset Tamper RateLimit
+ [Tags] Reset Tamper RateLimit
${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/ftp/security-ftp-monitor-content-suffix-data.yaml ${TEST NAME}
monitor-content-prefix
- [Tags] Reset Tamper RateLimit
+ [Tags] Reset Tamper RateLimit
${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/ftp/security-ftp-monitor-content-prefix-data.yaml ${TEST NAME}
monitor-content-substring
- [Tags] Reset Tamper RateLimit
+ [Tags] Reset Tamper RateLimit
${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/ftp/security-ftp-monitor-content-substring-data.yaml ${TEST NAME}
monitor-content-exactly
- [Tags] Reset Tamper RateLimit
+ [Tags] Reset Tamper RateLimit
${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/ftp/security-ftp-monitor-content-exactly-data.yaml ${TEST NAME}
monitor-account-suffix
- [Tags] Reset Tamper RateLimit
+ [Tags] Reset Tamper RateLimit
${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/ftp/security-ftp-monitor-account-suffix-data.yaml ${TEST NAME}
monitor-account-prefix
- [Tags] Reset Tamper RateLimit
+ [Tags] Reset Tamper RateLimit
${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/ftp/security-ftp-monitor-account-prefix-data.yaml ${TEST NAME}
monitor-account-substring
- [Tags] Reset Tamper RateLimit
+ [Tags] Reset Tamper RateLimit
${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/ftp/security-ftp-monitor-account-substring-data.yaml ${TEST NAME}
monitor-account-exactly
- [Tags] Reset Tamper RateLimit
+ [Tags] Reset Tamper RateLimit
${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/ftp/security-ftp-monitor-account-exactly-data.yaml ${TEST NAME}
monitor-ftp-log-verify
diff --git a/case/policies/security/http.robot b/case/policies/security/http.robot
index 0513ff7..b6fc00a 100644
--- a/case/policies/security/http.robot
+++ b/case/policies/security/http.robot
@@ -151,63 +151,238 @@ allow-fqdn-url-reqheader-resheader-reqbody-resbody
[Tags] MultiFilter Security
${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/http/security-http-allow-fqdn-url-reqheader-resheader-reqbody-resbody-data.yaml ${TEST NAME}
-deny-only-IpAndApplication
+deny-alert-only-IpAndApplication
[Tags] OnlySourceAndApp Security
${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/http/security-http-deny-only-IpAndApplication-data.yaml ${TEST NAME}
+
+deny-alert-noLog-only-IpAndApplication
+ [Tags] OnlySourceAndApp Security
+ ${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/http/security-http-deny-only-IpAndApplication-data.yaml ${TEST NAME}
-deny-fqdn-suffix
+deny-reset-update-block-403-fqdn-suffix
+ [Tags] SingleFiler Reset Block Alert Rate Limit Security
+ ${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/http/security-http-deny-fqdn-suffix-data.yaml ${TEST NAME}
+
+deny-block-403-fqdn-suffix
+ [Tags] SingleFiler Reset Block Alert Rate Limit Security
+ ${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/http/security-http-deny-fqdn-suffix-data.yaml ${TEST NAME}
+
+deny-block-404-fqdn-suffix
[Tags] SingleFiler Reset Block Alert Rate Limit Security
${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/http/security-http-deny-fqdn-suffix-data.yaml ${TEST NAME}
-deny-fqdn-exactly
+deny-alert-200-update-204-fqdn-suffix
+ [Tags] SingleFiler Reset Block Alert Rate Limit Security
+ ${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/http/security-http-deny-fqdn-suffix-data.yaml ${TEST NAME}
+
+deny-alert-204-fqdn-suffix
+ [Tags] SingleFiler Reset Block Alert Rate Limit Security
+ ${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/http/security-http-deny-fqdn-suffix-data.yaml ${TEST NAME}
+
+deny-rate-limit-update-big-fqdn-suffix
+ [Tags] SingleFiler Reset Block Alert Rate Limit Security
+ ${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/http/security-http-deny-fqdn-suffix-data.yaml ${TEST NAME}
+
+deny-rate-big-fqdn-suffix
+ [Tags] SingleFiler Reset Block Alert Rate Limit Security
+ ${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/http/security-http-deny-fqdn-suffix-data.yaml ${TEST NAME}
+
+deny-reset-update-block403-fqdn-exactly
+ [Tags] SingleFiler Reset Block Alert Rate Limit Security
+ ${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/http/security-http-deny-fqdn-exactly-data.yaml ${TEST NAME}
+
+deny-block403-fqdn-exactly
+ [Tags] SingleFiler Reset Block Alert Rate Limit Security
+ ${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/http/security-http-deny-fqdn-exactly-data.yaml ${TEST NAME}
+
+deny-block404-fqdn-exactly
+ [Tags] SingleFiler Reset Block Alert Rate Limit Security
+ ${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/http/security-http-deny-fqdn-exactly-data.yaml ${TEST NAME}
+
+deny-alert200-update-204-fqdn-exactly
+ [Tags] SingleFiler Reset Block Alert Rate Limit Security
+ ${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/http/security-http-deny-fqdn-exactly-data.yaml ${TEST NAME}
+
+deny-alert204-fqdn-exactly
+ [Tags] SingleFiler Reset Block Alert Rate Limit Security
+ ${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/http/security-http-deny-fqdn-exactly-data.yaml ${TEST NAME}
+
+deny-rate-limit-update-big-fqdn-exactly
+ [Tags] SingleFiler Reset Block Alert Rate Limit Security
+ ${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/http/security-http-deny-fqdn-exactly-data.yaml ${TEST NAME}
+
+deny-rate-limit-big-fqdn-exactly
+ [Tags] SingleFiler Reset Block Alert Rate Limit Security
+ ${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/http/security-http-deny-fqdn-exactly-data.yaml ${TEST NAME}
+
+deny-tamper-fqdn-exactly
[Tags] SingleFiler Reset Block Alert Rate Limit Security
- ${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/http/security-http-deny-fqdn-exactly-data.yaml ${TEST NAME}
+ ${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/http/security-http-deny-fqdn-exactly-data.yaml ${TEST NAME}
-deny-url-suffix
+deny-reset-update-block403-url-suffix
+ [Tags] SingleFilter Reset Block Redirect Alert Rate Limit Security
+ ${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/http/security-http-deny-url-suffix-data.yaml ${TEST NAME}
+
+deny-block404-url-suffix
[Tags] SingleFilter Reset Block Redirect Alert Rate Limit Security
${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/http/security-http-deny-url-suffix-data.yaml ${TEST NAME}
-deny-url-prefix
+deny-alert200-update-204-url-suffix
+ [Tags] SingleFilter Reset Block Redirect Alert Rate Limit Security
+ ${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/http/security-http-deny-url-suffix-data.yaml ${TEST NAME}
+
+deny-rate-limit-update-big-url-suffix
+ [Tags] SingleFilter Reset Block Redirect Alert Rate Limit Security
+ ${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/http/security-http-deny-url-suffix-data.yaml ${TEST NAME}
+
+deny-redirect303-url-suffix
+ [Tags] SingleFilter Reset Block Redirect Alert Rate Limit Security
+ ${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/http/security-http-deny-url-suffix-data.yaml ${TEST NAME}
+
+deny-reset-update-block403-url-prefix
+ [Tags] SingleFilter Reset Block Redirect Alert Rate Limit Security
+ ${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/http/security-http-deny-url-prefix-data.yaml ${TEST NAME}
+
+deny-block404-url-prefix
+ [Tags] SingleFilter Reset Block Redirect Alert Rate Limit Security
+ ${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/http/security-http-deny-url-prefix-data.yaml ${TEST NAME}
+
+deny-alert200-update-204-url-prefix
+ [Tags] SingleFilter Reset Block Redirect Alert Rate Limit Security
+ ${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/http/security-http-deny-url-prefix-data.yaml ${TEST NAME}
+
+deny-rate-limit-update-big-url-prefix
+ [Tags] SingleFilter Reset Block Redirect Alert Rate Limit Security
+ ${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/http/security-http-deny-url-prefix-data.yaml ${TEST NAME}
+
+deny-redirect303-url-prefix
[Tags] SingleFilter Reset Block Redirect Alert Rate Limit Security
${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/http/security-http-deny-url-prefix-data.yaml ${TEST NAME}
-deny-url-substring
+deny-reset-update-block403-url-substring
+ [Tags] SingleFilter Reset Block Redirect Alert Rate Limit Security
+ ${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/http/security-http-deny-url-substring-data.yaml ${TEST NAME}
+
+deny-block404-url-substring
+ [Tags] SingleFilter Reset Block Redirect Alert Rate Limit Security
+ ${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/http/security-http-deny-url-substring-data.yaml ${TEST NAME}
+
+deny-alert200-update-204-url-substring
+ [Tags] SingleFilter Reset Block Redirect Alert Rate Limit Security
+ ${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/http/security-http-deny-url-substring-data.yaml ${TEST NAME}
+
+deny-rate-limit-update-big-url-substring
+ [Tags] SingleFilter Reset Block Redirect Alert Rate Limit Security
+ ${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/http/security-http-deny-url-substring-data.yaml ${TEST NAME}
+
+deny-redirect303-url-substring
[Tags] SingleFilter Reset Block Redirect Alert Rate Limit Security
${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/http/security-http-deny-url-substring-data.yaml ${TEST NAME}
-deny-url-exactly
+deny-reset-update-block403-url-exactly
[Tags] SingleFilter Reset Block Redirect Alert Rate Limit Security
${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/http/security-http-deny-url-exactly-data.yaml ${TEST NAME}
-deny-fqdn-url
+deny-block404-url-exactly
+ [Tags] SingleFilter Reset Block Redirect Alert Rate Limit Security
+ ${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/http/security-http-deny-url-exactly-data.yaml ${TEST NAME}
+
+deny-alert200-update-204-url-exactly
+ [Tags] SingleFilter Reset Block Redirect Alert Rate Limit Security
+ ${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/http/security-http-deny-url-exactly-data.yaml ${TEST NAME}
+
+deny-rate-limit-update-big-url-exactly
+ [Tags] SingleFilter Reset Block Redirect Alert Rate Limit Security
+ ${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/http/security-http-deny-url-exactly-data.yaml ${TEST NAME}
+
+deny-redirect303-url-exactly
+ [Tags] SingleFilter Reset Block Redirect Alert Rate Limit Security
+ ${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/http/security-http-deny-url-exactly-data.yaml ${TEST NAME}
+
+deny-fqdn-url-log-open
+ [Tags] SingleFilter Redirect Security
+ ${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/http/security-http-deny-fqdn-url-data.yaml ${TEST NAME}
+
+deny-fqdn-url-log-close
[Tags] SingleFilter Redirect Security
- ${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/http/security-http-deny-fqdn-url-data.yaml ${TEST NAME}
+ ${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/http/security-http-deny-fqdn-url-data.yaml ${TEST NAME}
+
+deny-reset-update-block403-reqheader-prefix
+ [Tags] SingleFilter Reset Block Alert Rate Limit Security
+ ${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/http/security-http-deny-reqheader-prefix-data.yaml ${TEST NAME}
+
+deny-block404-reqheader-prefix
+ [Tags] SingleFilter Reset Block Alert Rate Limit Security
+ ${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/http/security-http-deny-reqheader-prefix-data.yaml ${TEST NAME}
+
+deny-alert200-update-204-reqheader-prefix
+ [Tags] SingleFilter Reset Block Alert Rate Limit Security
+ ${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/http/security-http-deny-reqheader-prefix-data.yaml ${TEST NAME}
+
+deny-rate-limit-update-big-reqheader-prefix
+ [Tags] SingleFilter Reset Block Alert Rate Limit Security
+ ${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/http/security-http-deny-reqheader-prefix-data.yaml ${TEST NAME}
-deny-reqheader-prefix
+deny-tamper-reqheader-prefix
[Tags] SingleFilter Reset Block Alert Rate Limit Security
${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/http/security-http-deny-reqheader-prefix-data.yaml ${TEST NAME}
-deny-reqheader-substring
+deny-reset-update-block403-substring
+ [Tags] SingleFilter Reset Block Alert Rate Limit Security
+ ${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/http/security-http-deny-reqheader-substring-data.yaml ${TEST NAME}
+
+deny-block404-reqheader-substring
+ [Tags] SingleFilter Reset Block Alert Rate Limit Security
+ ${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/http/security-http-deny-reqheader-substring-data.yaml ${TEST NAME}
+
+deny-alert200-update-204-reqheader-substring
+ [Tags] SingleFilter Reset Block Alert Rate Limit Security
+ ${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/http/security-http-deny-reqheader-substring-data.yaml ${TEST NAME}
+
+deny-rate-limit-update-big-reqheader-substring
[Tags] SingleFilter Reset Block Alert Rate Limit Security
${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/http/security-http-deny-reqheader-substring-data.yaml ${TEST NAME}
-deny-resheader-prefix
+deny-reset-resheader-prefix
[Tags] SingleFilter Reset Block Alert Rate Limit Security
${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/http/security-http-deny-resheader-prefix-data.yaml ${TEST NAME}
-deny-resheader-substring
+deny-rate-limit-update-big-resheader-prefix
+ [Tags] SingleFilter Reset Block Alert Rate Limit Security
+ ${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/http/security-http-deny-resheader-prefix-data.yaml ${TEST NAME}
+
+deny-reset-update-tamper-resheader-substring
+ [Tags] SingleFilter Reset Block Alert Rate Limit Security
+ ${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/http/security-http-deny-resheader-substring-data.yaml ${TEST NAME}
+
+deny-rate-limit-update-big-resheader-substring
[Tags] SingleFilter Reset Block Alert Rate Limit Security
${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/http/security-http-deny-resheader-substring-data.yaml ${TEST NAME}
-deny-url-resbody-substring
+deny-url-reset-resbody-substring
+ [Tags] SingleFilter Reset Rate Limit Security
+ ${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/http/security-http-deny-url-resbody-substring-data.yaml ${TEST NAME}
+
+deny-url-rate-little-resbody-substring
+ [Tags] SingleFilter Reset Rate Limit Security
+ ${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/http/security-http-deny-url-resbody-substring-data.yaml ${TEST NAME}
+
+deny-url-rate-big-resbody-substring
[Tags] SingleFilter Reset Rate Limit Security
${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/http/security-http-deny-url-resbody-substring-data.yaml ${TEST NAME}
+deny-reset-fqdn-url-reqheader-resheader-reqbody-resbody
+ [Tags] MultiFilter Reset Rate Limit Security
+ ${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/http/security-http-deny-fqdn-url-reqheader-resheader-reqbody-resbody-data.yaml ${TEST NAME}
-deny-fqdn-url-reqheader-resheader-reqbody-resbody
+deny-rate-little-fqdn-url-reqheader-resheader-reqbody-resbody
[Tags] MultiFilter Reset Rate Limit Security
${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/http/security-http-deny-fqdn-url-reqheader-resheader-reqbody-resbody-data.yaml ${TEST NAME}
+deny-rate-big-fqdn-url-reqheader-resheader-reqbody-resbody
+ [Tags] MultiFilter Reset Rate Limit Security
+ ${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/http/security-http-deny-fqdn-url-reqheader-resheader-reqbody-resbody-data.yaml ${TEST NAME}
+
monitor-only-IpAndApplication
[Tags] OnlySourceAndApp Security
${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/http/security-http-monitor-only-IpAndApplication-data.yaml ${TEST NAME}
diff --git a/case/policies/security/mail.robot b/case/policies/security/mail.robot
index 54c6e8d..3d4ed8a 100644
--- a/case/policies/security/mail.robot
+++ b/case/policies/security/mail.robot
@@ -223,11 +223,51 @@ allow-subject-content-attachmentname-attachmentcontent-from-to
[Tags] SingleFilter
${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/mail/security-mail-allow-subject-content-attachmentname-attachmentcontent-from-to-data.yaml ${TEST NAME}
-deny-only-IpAndApplication
+deny-reset-update-block-550-only-IpAndApplication
+ [Tags] OnlySourceAndApp
+ ${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/mail/security-mail-deny-only-IpAndApplication-data.yaml ${TEST NAME}
+
+deny-block-550-only-IpAndApplication
+ [Tags] OnlySourceAndApp
+ ${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/mail/security-mail-deny-only-IpAndApplication-data.yaml ${TEST NAME}
+
+deny-block-551-only-IpAndApplication
+ [Tags] OnlySourceAndApp
+ ${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/mail/security-mail-deny-only-IpAndApplication-data.yaml ${TEST NAME}
+
+deny-rate-little-update-big-only-IpAndApplication
+ [Tags] OnlySourceAndApp
+ ${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/mail/security-mail-deny-only-IpAndApplication-data.yaml ${TEST NAME}
+
+deny-rate-big-only-IpAndApplication
+ [Tags] OnlySourceAndApp
+ ${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/mail/security-mail-deny-only-IpAndApplication-data.yaml ${TEST NAME}
+
+deny-tamper-only-IpAndApplication
[Tags] OnlySourceAndApp
${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/mail/security-mail-deny-only-IpAndApplication-data.yaml ${TEST NAME}
-deny-subject-suffix
+deny-reset-update-block550-subject-suffix
+ [Tags] SingleFilter Tamper RateLimit
+ ${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/mail/security-mail-deny-subject-suffix-data.yaml ${TEST NAME}
+
+deny-block550-subject-suffix
+ [Tags] SingleFilter Tamper RateLimit
+ ${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/mail/security-mail-deny-subject-suffix-data.yaml ${TEST NAME}
+
+deny-block551-subject-suffix
+ [Tags] SingleFilter Tamper RateLimit
+ ${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/mail/security-mail-deny-subject-suffix-data.yaml ${TEST NAME}
+
+deny-rate-little-update-big-subject-suffix
+ [Tags] SingleFilter Tamper RateLimit
+ ${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/mail/security-mail-deny-subject-suffix-data.yaml ${TEST NAME}
+
+deny-rate-big-subject-suffix
+ [Tags] SingleFilter Tamper RateLimit
+ ${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/mail/security-mail-deny-subject-suffix-data.yaml ${TEST NAME}
+
+deny-tamper-subject-suffix
[Tags] SingleFilter Tamper RateLimit
${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/mail/security-mail-deny-subject-suffix-data.yaml ${TEST NAME}
@@ -243,7 +283,6 @@ deny-subject-exactly
[Tags] Reset Tamper RateLimit
${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/mail/security-mail-deny-subject-exactly-data.yaml ${TEST NAME}
-
deny-content-substring
[Tags] Reset Tamper RateLimit
${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/mail/security-mail-deny-content-substring-data.yaml ${TEST NAME}
@@ -264,12 +303,10 @@ deny-attachmentname-exactly
[Tags] Reset Tamper RateLimit
${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/mail/security-mail-deny-attachmentname-exactly-data.yaml ${TEST NAME}
-
deny-attachmentcontent-substring
[Tags] Reset Tamper RateLimit
${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/mail/security-mail-deny-attachmentcontent-substring-data.yaml ${TEST NAME}
-
deny-from-suffix
[Tags] Reset Tamper RateLimit
${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/mail/security-mail-deny-from-suffix-data.yaml ${TEST NAME}
@@ -318,11 +355,9 @@ deny-account-exactly
[Tags] Reset Tamper RateLimit
${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/mail/security-mail-deny-account-exactly-data.yaml ${TEST NAME}
-
monitor-only-IpAndApplication
[Tags] OnlySourceAndApp OnlyApplication
${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/mail/security-mail-monitor-only-IpAndApplication-data.yaml ${TEST NAME}
-
monitor-subject-suffix
[Tags] SingleFilter
diff --git a/case/policies/security/sip.robot b/case/policies/security/sip.robot
index 4d4cc06..3d08097 100644
--- a/case/policies/security/sip.robot
+++ b/case/policies/security/sip.robot
@@ -19,15 +19,51 @@ allow-only-IpAndApplication
[Tags] OnlySourceAndApp
${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/sip/security-sip-allow-only-IpAndApplication-data.yaml ${TEST NAME}
-deny-only-IpAndApplication
+deny-drop-only-IpAndApplication
[Tags] OnlySourceAndApp Drop Tamper Reset
${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/sip/security-sip-deny-only-IpAndApplication-data.yaml ${TEST NAME}
-deny-originator-substring
+deny-default-only-IpAndApplication
+ [Tags] OnlySourceAndApp Drop Tamper Reset
+ ${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/sip/security-sip-deny-only-IpAndApplication-data.yaml ${TEST NAME}
+
+deny-rate_limitSmall-only-IpAndApplication
+ [Tags] OnlySourceAndApp Drop Tamper Reset
+ ${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/sip/security-sip-deny-only-IpAndApplication-data.yaml ${TEST NAME}
+
+deny-rate_limitBig-only-IpAndApplication
+ [Tags] OnlySourceAndApp Drop Tamper Reset
+ ${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/sip/security-sip-deny-only-IpAndApplication-data.yaml ${TEST NAME}
+
+deny-drop-originator-substring
[Tags] OnlySourceAndApp Drop Tamper Reset
${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/sip/security-sip-deny-originator-substring-data.yaml ${TEST NAME}
-deny-responder-substring
+deny-rate_limitSmall-originator-substring
+ [Tags] OnlySourceAndApp Drop Tamper Reset
+ ${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/sip/security-sip-deny-originator-substring-data.yaml ${TEST NAME}
+
+deny-rate_limitBig-originator-substring
+ [Tags] OnlySourceAndApp Drop Tamper Reset
+ ${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/sip/security-sip-deny-originator-substring-data.yaml ${TEST NAME}
+
+deny-tamper-originator-substring
+ [Tags] OnlySourceAndApp Drop Tamper Reset
+ ${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/sip/security-sip-deny-originator-substring-data.yaml ${TEST NAME}
+
+deny-drop-responder-substring
+ [Tags] OnlySourceAndApp Drop Tamper Reset
+ ${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/sip/security-sip-deny-responder-substring-data.yaml ${TEST NAME}
+
+deny-rate_limitSmall-responder-substring
+ [Tags] OnlySourceAndApp Drop Tamper Reset
+ ${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/sip/security-sip-deny-responder-substring-data.yaml ${TEST NAME}
+
+deny-rate_limitBig-responder-substring
+ [Tags] OnlySourceAndApp Drop Tamper Reset
+ ${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/sip/security-sip-deny-responder-substring-data.yaml ${TEST NAME}
+
+deny-tamper-responder-substring
[Tags] OnlySourceAndApp Drop Tamper Reset
${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/sip/security-sip-deny-responder-substring-data.yaml ${TEST NAME}
diff --git a/case/policies/security/ssl.robot b/case/policies/security/ssl.robot
index d6f407e..ddec455 100644
--- a/case/policies/security/ssl.robot
+++ b/case/policies/security/ssl.robot
@@ -55,20 +55,56 @@ allow-cn-suffix
[Tags] SingleFiler TLS1_2
${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/ssl/security-ssl-allow-cn-suffix-data.yaml ${TEST NAME}
-deny-fqdn-suffix-famousSites
- [Tags] Reset Tamper RateLimit SingleFiler MultiFilter Famous sites
+deny-reset-fqdn-suffix-famousSites
+ [Tags] Reset Tamper RateLimit SingleFiler Famous sites
+ ${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/ssl/security-ssl-deny-fqdn-suffix-famousSites-data.yaml ${TEST NAME}
+
+deny-tamper-fqdn-suffix-famousSites
+ [Tags] Reset Tamper RateLimit SingleFiler Famous sites
+ ${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/ssl/security-ssl-deny-fqdn-suffix-famousSites-data.yaml ${TEST NAME}
+
+deny-log-close-fqdn-suffix-famousSites
+ [Tags] Reset Tamper RateLimit SingleFiler Famous sites
+ ${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/ssl/security-ssl-deny-fqdn-suffix-famousSites-data.yaml ${TEST NAME}
+
+ipv6-deny-reset-fqdn-suffix-famousSites
+ [Tags] Reset SingleFiler Famous sites Ipv6
+ ${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/ssl/security-ssl-deny-fqdn-suffix-famousSites-data.yaml ${TEST NAME}
+
+ipv6-deny-tamper-fqdn-suffix-famousSites
+ [Tags] Tamper SingleFiler Famous sites Ipv6
+ ${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/ssl/security-ssl-deny-fqdn-suffix-famousSites-data.yaml ${TEST NAME}
+
+ipv6-deny-log-close-fqdn-suffix-famousSites
+ [Tags] Reset Tamper RateLimit SingleFiler Famous sites Ipv6
${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/ssl/security-ssl-deny-fqdn-suffix-famousSites-data.yaml ${TEST NAME}
deny-fqdn-suffix
- [Tags] Reset Tamper RateLimit SingleFiler MultiFilter
+ [Tags] Reset Tamper RateLimit SingleFiler
${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/ssl/security-ssl-deny-fqdn-suffix-data.yaml ${TEST NAME}
-
-deny-fqdn-exactly-famousSites
- [Tags] Reset Tamper RateLimit SingleFiler MultiFilter Famous sites
+
+deny-ssl-signature
+ [Tags] Reset Tamper RateLimit SingleFiler
+ ${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/ssl/security-ssl-deny-ssl-signature-data.yaml ${TEST NAME}
+
+deny-reset-fqdn-exactly-famousSites
+ [Tags] Reset Tamper RateLimit SingleFiler Famous sites
+ ${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/ssl/security-ssl-deny-fqdn-exactly-famousSites-data.yaml ${TEST NAME}
+
+deny-tamper-fqdn-exactly-famousSites
+ [Tags] Reset Tamper RateLimit SingleFiler Famous sites
+ ${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/ssl/security-ssl-deny-fqdn-exactly-famousSites-data.yaml ${TEST NAME}
+
+ipv6-deny-reset-fqdn-exactly-famousSites
+ [Tags] Reset SingleFiler Famous sites Ipv6
+ ${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/ssl/security-ssl-deny-fqdn-exactly-famousSites-data.yaml ${TEST NAME}
+
+ipv6-deny-tamper-fqdn-exactly-famousSites
+ [Tags] Tamper SingleFiler Famous sites Ipv6
${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/ssl/security-ssl-deny-fqdn-exactly-famousSites-data.yaml ${TEST NAME}
deny-fqdn-exactly
- [Tags] Reset Tamper RateLimit SingleFiler MultiFilter
+ [Tags] Reset Tamper RateLimit SingleFiler
${objectIds} ${policyIds} PolilcysByTemplate ${path}/data/security/ssl/security-ssl-deny-fqdn-exactly-data.yaml ${TEST NAME}
deny-only-IpAndApplication
diff --git a/control/business.py b/control/business.py
index 2344f7b..4d9c6bd 100644
--- a/control/business.py
+++ b/control/business.py
@@ -809,7 +809,7 @@ def callbaock_upload_result_file(file_path, instructNo, tsglogger):
r_callback_upload_file_test = json.loads(r_callback_upload_file.text, encoding="utf-8")
except Exception as e:
n += 1
- tsglogger.error("调用总结果{}的绝对路径接口失败".format(data))
+ tsglogger.error("调用上传文件时,文件:{}上传失败".format(data))
tsglogger.error(e)
tsglogger.error("异常:{}".format((traceback.format_exc())))
continue
@@ -950,10 +950,16 @@ def generate_caselist_client_info_list(f_dict, execute_case_list, tsglogger):
manageIp = item_dict["manageIp"]
manageUser = item_dict["authUsername"]
managePassword = base64.b64decode(item_dict["authPin"]).decode()
+ """
+ ipv4和ipv6参数全部提取,直接使用下面提取即可
if item_dict["endpoints"][0]["ip"] != None or item_dict["endpoints"][0]["ip"] != "":
operationIp = item_dict["endpoints"][0]["ip"]
+ ipv6OperationIp = item_dict["endpoints"][0]["ipv6"]
else:
- operationIp = item_dict["endpoints"][0]["ipv6"]
+ operationIp = item_dict["endpoints"][0]["ip"]
+ """
+ operationIp = item_dict["endpoints"][0]["ip"]
+ ipv6OperationIp = item_dict["endpoints"][0]["ipv6"]
client_filter_dict0["clientSystem"] = clientSystem
client_filter_dict0["systemVersion"] = systemVersion
@@ -965,6 +971,7 @@ def generate_caselist_client_info_list(f_dict, execute_case_list, tsglogger):
client_filter_dict0["manageUser"] = manageUser
client_filter_dict0["managePassword"] = managePassword
client_filter_dict0["operationIp"] = operationIp
+ client_filter_dict0["ipv6OperationIp"] = ipv6OperationIp
client_filter_list1.append(copy.deepcopy(client_filter_dict0))
client_info_list1 = client_filter_list1
tsglogger.debug(f"过程参数,client_info_list1:{client_info_list1}")
@@ -1399,12 +1406,13 @@ def get_ip_by_udp(destip):
if __name__ == "__main__":
+ file_path = ['/opt/test/automation/tasks/2022110911510003000153357442/report.html', '/opt/test/automation/tasks/2022110911510003000153357442/log.html', '/opt/test/automation/tasks/2022110911510003000153357442/output_2022110911510003000153357442.xml']
+ instructNo = "2022110911510003000153357442"
+ tsglogger = tsglogger_fun(instructNo=instructNo)
+ callbaock_upload_result_file(file_path, instructNo, tsglogger)
+ print(21)
- b = get_ip_by_udp("8.8.8.8")
- print(b)
- c = get_ip_by_udp("10.10.10.158")
- print(c)
+ print(2222)
- print(2222)
diff --git a/keyword/common/functional_keywords.robot b/keyword/common/functional_keywords.robot
index e4bd840..31364a0 100644
--- a/keyword/common/functional_keywords.robot
+++ b/keyword/common/functional_keywords.robot
@@ -256,6 +256,7 @@ DeleteProfileByIds
#删除对象
log DeleteProfile
log ${profileIds}
+ log ${typeUrl}
${response} Run Keyword If ${tsgVersion}<22.06 BaseDeleteRequest ${typeUrl} {"profileIds":${profileIds}}
... ELSE IF "${typeUrl}"=="/${version}/policy/profile/keyringobj" BaseDeleteRequest ${typeUrl} {"keyringIds":${profileIds},"vsysId":${vsysId}}
... ELSE BaseDeleteRequest ${typeUrl} {"profileIds":${profileIds},"vsysId":${vsysId}}
diff --git a/keyword/objects/object.robot b/keyword/objects/object.robot
index d27c41c..ffa4272 100644
--- a/keyword/objects/object.robot
+++ b/keyword/objects/object.robot
@@ -94,8 +94,11 @@ GetClientIp
log ${clientInfo}
${clientInfo} Replace String ${clientInfo} ' "
+ ${clientInfo} Replace String ${clientInfo} None ""
${clientInfo} json.loads ${clientInfo}
- ${testClentIP} Get From Dictionary ${clientInfo} operationIp
+ log ${clientInfo}
+ ${testClentIP} Run Keyword If "${ipVersion}"=="4" Get From Dictionary ${clientInfo} operationIp
+ ... ELSE Get From Dictionary ${clientInfo} ipv6OperationIp
[Return] ${testClentIP}
GetMobileClientIp
diff --git a/keyword/policys/policy.robot b/keyword/policys/policy.robot
index 7afd256..db17c85 100644
--- a/keyword/policys/policy.robot
+++ b/keyword/policys/policy.robot
@@ -347,11 +347,11 @@ PolilcysByTemplate
#request:{"verifyList":[{"policyType":"tsg_security","verifySession":{"attributes":[{"attributeType":"string","attributeName":"app_id","attributeValue":{"string":1009701}},{"attributeType":"string","attributeName":"subscriberid","attributeValue":{"string":"SubscriberID"}},{"attributeType":"string","attributeName":"imsi","attributeValue":{"string":"imsi"}},{"attributeType":"string","attributeName":"phone_number","attributeValue":{"string":"phonenumber"}},{"attributeType":"string","attributeName":"apn","attributeValue":{"string":"apnapn"}},{"attributeType":"ip","attributeName":"source","attributeValue":{"ip":"192.168.50.10","port":"10000","tableName":"TSG_SECURITY_SOURCE_ADDR","addrType":4,"protocol":"6"}},{"attributeType":"ip","attributeName":"destination","attributeValue":{"ip":"172.16.0.1","port":"80","tableName":"TSG_SECURITY_DESTINATION_ADDR","addrType":4,"protocol":"6"}}]}}]}
#response:
Sleep ${policyVerificationSleepSeconds}
- # ${verifyResult} ${policyTemp} Run Keyword And Continue On Failure VerifyPolicy ${policyId} ${policyVerifyJson} ${atributeObjectIds}
- # log ${verifyResult}
+ ${verifyResult} ${policyTemp} Run Keyword And Continue On Failure VerifyPolicy ${policyId} ${policyVerifyJson} ${atributeObjectIds}
+ log ${verifyResult}
#策略验证时间较长,暂强制设置verifyResult为1
- ${verifyResult} Set Variable True
- ${id} ${policyTemp} GetIdFromPolicyId ${policyId} policyIds
+ # ${verifyResult} Set Variable True
+ # ${id} ${policyTemp} GetIdFromPolicyId ${policyId} policyIds
${return} ${editPolicyId} Run Keyword And Ignore Error Get From Dictionary ${policyTemp}[0] policyId
Log 功能端校验
Log 日志校验
@@ -747,6 +747,7 @@ ExcuteFtpCommand
${excuteSuccessful} Set Variable 0
${loginInfo} Replace String ${loginInfo} EXCLAM !
${loginInfo} Replace String ${loginInfo} ' "
+ ${loginInfo} Replace String ${loginInfo} None ""
${loginInfo} json.loads ${loginInfo}
${manageIp} Get From Dictionary ${loginInfo} manageIp
${operationIp} Get From Dictionary ${loginInfo} operationIp
@@ -760,7 +761,8 @@ ExcuteFtpCommand
${returnLogin} ${login} Run Keyword And Ignore Error SSHLibrary.Login ${manageUser} ${managePassword}
${defaultFtpInfo} Replace String ${defaultFtpInfo} ' "
${defaultFtpInfo} json.loads ${defaultFtpInfo}
- ${ftpHost} Get From Dictionary ${defaultFtpInfo} ftpHost
+ ${ftpHost} Run Keyword If "${ipVersion}"=="4" Get From Dictionary ${defaultFtpInfo} ftpHost
+ ... ELSE Get From Dictionary ${defaultFtpInfo} ipv6Host
${ftpUserName} Get From Dictionary ${defaultFtpInfo} ftpUserName
${ftpPassword} Get From Dictionary ${defaultFtpInfo} ftpPassword
@@ -798,6 +800,7 @@ ExcuteFtpCommand
EmailSend
[Arguments] ${verify} ${loginInfo} ${defaultMailInfo} ${logQueryParam} ${logType} ${logPolicyId}
${defaultMailInfo} Replace String ${defaultMailInfo} ' "
+
${defaultMailInfo} json.loads ${defaultMailInfo}
${defaultMailAccount} Get From Dictionary ${defaultMailInfo} mailAccount
${defaultMailPasswd} Get From Dictionary ${defaultMailInfo} mailPasswd
@@ -808,6 +811,7 @@ EmailSend
${excuteSuccessful} Set Variable 0
${loginInfo} Replace String ${loginInfo} EXCLAM !
${loginInfo} Replace String ${loginInfo} ' "
+ ${loginInfo} Replace String ${loginInfo} None ""
${loginInfo} json.loads ${loginInfo}
${manageIp} Get From Dictionary ${loginInfo} manageIp
${operationIp} Get From Dictionary ${loginInfo} operationIp
@@ -902,9 +906,11 @@ ExcuteCommand
${excuteSuccessful} Set Variable 0
${loginInfo} Replace String ${loginInfo} EXCLAM !
${loginInfo} Replace String ${loginInfo} ' "
+ ${loginInfo} Replace String ${loginInfo} None ""
${loginInfo} json.loads ${loginInfo}
${manageIp} Get From Dictionary ${loginInfo} manageIp
- ${operationIp} Get From Dictionary ${loginInfo} operationIp
+ ${operationIp} Run Keyword If "${ipVersion}"=="4" Get From Dictionary ${loginInfo} operationIp
+ ... ELSE Get From Dictionary ${loginInfo} ipv6OperationIp
${manageUser} Get From Dictionary ${loginInfo} manageUser
${managePassword} Get From Dictionary ${loginInfo} managePassword
${isUTC} Evaluate ${tsgVersion}>=22.03
@@ -1179,9 +1185,12 @@ VerifyPolicy
${policyTemp} Create List
Log 策略校验/v2/policy/verify
#request:{"verifyList":[{"policyType":"tsg_security","verifySession":{"attributes":[{"attributeType":"string","attributeName":"app_id","attributeValue":{"string":1009701}},{"attributeType":"string","attributeName":"subscriberid","attributeValue":{"string":"SubscriberID"}},{"attributeType":"string","attributeName":"imsi","attributeValue":{"string":"imsi"}},{"attributeType":"string","attributeName":"phone_number","attributeValue":{"string":"phonenumber"}},{"attributeType":"string","attributeName":"apn","attributeValue":{"string":"apnapn"}},{"attributeType":"ip","attributeName":"source","attributeValue":{"ip":"192.168.50.10","port":"10000","tableName":"TSG_SECURITY_SOURCE_ADDR","addrType":4,"protocol":"6"}},{"attributeType":"ip","attributeName":"destination","attributeValue":{"ip":"172.16.0.1","port":"80","tableName":"TSG_SECURITY_DESTINATION_ADDR","addrType":4,"protocol":"6"}}]}}]}
-
+ log ${verifyJson}
+ ${verifyJson} Replace String ${verifyJson} "vsysId": 1 "vsysId": ${vsysId}
+ ${verifyJson} Replace String ${verifyJson} "vsysId": 2 "vsysId": ${TrafficVsysId}
${verifyList} Run Keyword And Continue On Failure Verify ${verifyJson}
log ${verifyList}
+
${testType} = Evaluate type(${verifyList})
#获取策略id ${policyId} Get From List
${id} ${policyTemp} GetIdFromPolicyId ${pid} policyIds
diff --git a/other/data/proxy/http/proxy-http-ipv6-allow-fqdn-url-reqheader-resheader-data.yaml b/other/data/proxy/http/proxy-http-ipv6-allow-fqdn-url-reqheader-resheader-data.yaml
new file mode 100644
index 0000000..57919db
--- /dev/null
+++ b/other/data/proxy/http/proxy-http-ipv6-allow-fqdn-url-reqheader-resheader-data.yaml
@@ -0,0 +1,76 @@
+#注意keywordArray下的关键字必须为数组形式
+"ipv6-allow-fqdn-url-reqheader-resheader_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "ipv6-allow-fqdn-url-reqheader-resheader"
+ "policyType": "pxy_manipulation"
+ "isGre": 0
+ "logType": "proxy_event"
+ "action": "allow"
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 2
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "http"
+ "appIdObjects":
+ - "http"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "hopeSuccessNumber": 1
+ "command": 'wget --debug -q -O- --user-agent "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/97.0.4692.99 Safari/537.36" --header="Cookie: csrftoken=L8xCyp4D6yX8hh2ee98AvLkw8kHRQqTM; mid=YkUR9gALAAEG7tdhLh3ZpwCbXgjA; ig_did=4ECFEFB4-AFDD-4527-B616-97805C48D694; ig_nrcb=1" https://www.google.com'
+ "commandRes": "defaultCert"
+ "logQueryParam":
+ -
+ "queryFiledKey": "http_host"
+ "queryValue": "www.google.com"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_HTTP_HOST"
+ "objectType": "fqdn"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "$www.google.com"
+ -
+ "protocolField": "TSG_FIELD_HTTP_URL"
+ "objectType": "url"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "google"
+ -
+ "protocolField": "TSG_FIELD_HTTP_REQ_HDR"
+ "objectType": "http_signature"
+ "objectSubType": "User-Agent"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "Mozilla/5.0*"
+ "district": "User-Agent"
+ -
+ "protocolField": "TSG_FIELD_HTTP_REQ_HDR"
+ "objectType": "http_signature"
+ "objectSubType": "Cookie"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "csrftoken"
+ "district": "Cookie"
+ -
+ "protocolField": "TSG_FIELD_HTTP_RES_HDR"
+ "objectType": "http_signature"
+ "objectSubType": "Content-Type"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "utf-8"
+ "district": "Content-Type"
diff --git a/other/data/proxy/http/proxy-http-ipv6-deny-fqdn-url-reqheader-resheader-data.yaml b/other/data/proxy/http/proxy-http-ipv6-deny-fqdn-url-reqheader-resheader-data.yaml
new file mode 100644
index 0000000..a5ffb13
--- /dev/null
+++ b/other/data/proxy/http/proxy-http-ipv6-deny-fqdn-url-reqheader-resheader-data.yaml
@@ -0,0 +1,71 @@
+#注意keywordArray下的关键字必须为数组形式
+"ipv6-deny-fqdn-url-reqheader-resheader_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "ipv6-deny-fqdn-url-reqheader-resheader"
+ "policyType": "pxy_manipulation"
+ "isGre": 0
+ "logType": "proxy_event"
+ "action": "deny"
+ "method": "block"
+ "code": 404
+ "message": 涨涨涨涨
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 2
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "http"
+ "appIdObjects":
+ - "http"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "hopeSuccessNumber": 1
+ "command": 'wget --debug -q -O- --user-agent "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/97.0.4692.99 Safari/537.36" https://www.google.com'
+ "commandRes": "Error 404"
+ "logQueryParam":
+ -
+ "queryFiledKey": "http_host"
+ "queryValue": "facebook.com"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_HTTP_HOST"
+ "objectType": "fqdn"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "$www.facebook.com"
+ -
+ "protocolField": "TSG_FIELD_HTTP_URL"
+ "objectType": "url"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "facebook"
+ -
+ "protocolField": "TSG_FIELD_HTTP_REQ_HDR"
+ "objectType": "http_signature"
+ "objectSubType": "User-Agent"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "Mozilla/5.0*"
+ "district": "User-Agent"
+ -
+ "protocolField": "TSG_FIELD_HTTP_RES_HDR"
+ "objectType": "http_signature"
+ "objectSubType": "Content-Type"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "utf-8"
+ "district": "Content-Type"
+ \ No newline at end of file
diff --git a/other/data/proxy/http/proxy-http-ipv6-hijack-url-resheader-data.yaml b/other/data/proxy/http/proxy-http-ipv6-hijack-url-resheader-data.yaml
new file mode 100644
index 0000000..5366927
--- /dev/null
+++ b/other/data/proxy/http/proxy-http-ipv6-hijack-url-resheader-data.yaml
@@ -0,0 +1,57 @@
+#注意keywordArray下的关键字必须为数组形式
+"ipv6-hijack-url-resheader_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "ipv6-hijack-url-resheader"
+ "policyType": "pxy_manipulation"
+ "isGre": 0
+ "logType": "proxy_event"
+ "action": "manipulation"
+ "method": "hijack"
+ "html_profile":
+ "responseUrl": "/v1/policy/profile/hijackfiles"
+ "pageFiles": "hijackFiles"
+ "filName": "Create-Hijack Files-test.apk"
+ "flag": "hijack"
+ "feature": "application/vnd.android.package-archive"
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 2
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "http"
+ "appIdObjects":
+ - "http"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "hopeSuccessNumber": 1
+ "command": "wget --debug -q -O- https://www.facebook.com/"
+ "commandRes": "tfe"
+ "logQueryParam":
+ -
+ "queryFiledKey": "http_host"
+ "queryValue": "www.facebook.com"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_HTTP_RES_HDR"
+ "objectType": "http_signature"
+ "objectSubType": "Content-Type"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "utf-8"
+ "district": "Content-Type"
+ -
+ "protocolField": "TSG_FIELD_HTTP_URL"
+ "objectType": "url"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "$www.facebook.com/"
diff --git a/other/data/proxy/http/proxy-http-ipv6-insert-url-fqdn-data.yaml b/other/data/proxy/http/proxy-http-ipv6-insert-url-fqdn-data.yaml
new file mode 100644
index 0000000..ba9aa61
--- /dev/null
+++ b/other/data/proxy/http/proxy-http-ipv6-insert-url-fqdn-data.yaml
@@ -0,0 +1,56 @@
+#注意keywordArray下的关键字必须为数组形式
+"ipv6-insert-url-fqdn_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "ipv6-insert-url-fqdn"
+ "policyType": "pxy_manipulation"
+ "isGre": 0
+ "logType": "proxy_event"
+ "action": "manipulation"
+ "method": "insert"
+ "html_profile":
+ "responseUrl": "/v1/policy/profile/insertscripts"
+ "pageFiles": "insertFiles"
+ "filName": "Create-Insert Scripts-test.css"
+ "flag": "insertcss"
+ "feature": "nofeature"
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 2
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "http"
+ "appIdObjects":
+ - "http"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "hopeSuccessNumber": 1
+ "command": 'wget --debug -q -O- --header="Cookie: VISITOR_INFO1_LIVE=TBC5iVRMIHE; PREF=tz=Europe.Moscow; GPS=1; YSC=zR3kR9lEygw; ST-1awwma9=itct=CBsQ9agHGAEiEwiM3tj0gP_2AhVu7EwCHSZbCtk%3D&csn=MC41NTU5NDYwMjMxOTMxODMy&endpoint=%7B%22clickTrackingParams%22%3A%22CBsQ9agHGAEiEwiM3tj0gP_2AhVu7EwCHSZbCtk%3D%22%2C%22commandMetadata%22%3A%7B%22webCommandMetadata%22%3A%7B%22url%22%3A%22%2Ffeed%2Fexplore%22%2C%22webPageType%22%3A%22WEB_PAGE_TYPE_BROWSE%22%2C%22rootVe%22%3A6827%2C%22apiUrl%22%3A%22%2Fyoutubei%2Fv1%2Fbrowse%22%7D%7D%2C%22browseEndpoint%22%3A%7B%22browseId%22%3A%22FEexplore%22%7D%7D" https://www.youtube.com/feed/explore'
+ "commandRes": "tfe"
+ "logQueryParam":
+ -
+ "queryFiledKey": "http_host"
+ "queryValue": "www.youtube.com"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_HTTP_HOST"
+ "objectType": "fqdn"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "$www.youtube.com"
+ -
+ "protocolField": "TSG_FIELD_HTTP_URL"
+ "objectType": "url"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "youtube"
diff --git a/other/data/proxy/http/proxy-http-ipv6-replace-url-reqheader-data.yaml b/other/data/proxy/http/proxy-http-ipv6-replace-url-reqheader-data.yaml
new file mode 100644
index 0000000..a53146d
--- /dev/null
+++ b/other/data/proxy/http/proxy-http-ipv6-replace-url-reqheader-data.yaml
@@ -0,0 +1,57 @@
+#注意keywordArray下的关键字必须为数组形式
+"ipv6-replace-url-reqheader_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "ipv6-replace-url-reqheader"
+ "policyType": "pxy_manipulation"
+ "isGre": 0
+ "logType": "proxy_event"
+ "action": "manipulation"
+ "method": "replace"
+ "rules":
+ -
+ "regex_enable": 0
+ "search_in": "http_req_uri"
+ "find": "explore"
+ "replace_with": "subscriptions"
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 2
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "http"
+ "appIdObjects":
+ - "http"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "hopeSuccessNumber": 1
+ "command": 'wget --debug -q -O- --header="Cookie: VISITOR_INFO1_LIVE=TBC5iVRMIHE; PREF=tz=Europe.Moscow; GPS=1; YSC=zR3kR9lEygw; ST-1awwma9=itct=CBsQ9agHGAEiEwiM3tj0gP_2AhVu7EwCHSZbCtk%3D&csn=MC41NTU5NDYwMjMxOTMxODMy&endpoint=%7B%22clickTrackingParams%22%3A%22CBsQ9agHGAEiEwiM3tj0gP_2AhVu7EwCHSZbCtk%3D%22%2C%22commandMetadata%22%3A%7B%22webCommandMetadata%22%3A%7B%22url%22%3A%22%2Ffeed%2Fexplore%22%2C%22webPageType%22%3A%22WEB_PAGE_TYPE_BROWSE%22%2C%22rootVe%22%3A6827%2C%22apiUrl%22%3A%22%2Fyoutubei%2Fv1%2Fbrowse%22%7D%7D%2C%22browseEndpoint%22%3A%7B%22browseId%22%3A%22FEexplore%22%7D%7D" https://www.youtube.com/feed/explore'
+ "commandRes": "defaultCert"
+ "logQueryParam":
+ -
+ "queryFiledKey": "http_host"
+ "queryValue": "www.youtube.com"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_HTTP_REQ_HDR"
+ "objectType": "http_signature"
+ "objectSubType": "Cookie"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "TBC5iVRMIHE"
+ "district": "Cookie"
+ -
+ "protocolField": "TSG_FIELD_HTTP_URL"
+ "objectType": "url"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "youtube"
diff --git a/other/data/proxy/http/proxy-http-ipv6-run_script-host-url-reqheader-resheader-data.yaml b/other/data/proxy/http/proxy-http-ipv6-run_script-host-url-reqheader-resheader-data.yaml
new file mode 100644
index 0000000..6eec7d2
--- /dev/null
+++ b/other/data/proxy/http/proxy-http-ipv6-run_script-host-url-reqheader-resheader-data.yaml
@@ -0,0 +1,74 @@
+#注意keywordArray下的关键字必须为数组形式
+"ipv6-run_script-host-url-reqheader-resheader_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "proxy-ipv6-run_script-host-url-reqheader-resheader"
+ "policyType": "pxy_manipulation"
+ "isGre": 0
+ "logType": "proxy_event"
+ "action": "manipulation"
+ "method": "run_script"
+ "html_profile":
+ "responseUrl": "/v1/policy/profile/runscript"
+ "pageFiles": "runScriptFiles"
+ "filName": "run_script_edit_resp_head.lua"
+ "flag": "runScript"
+ "feature": "1000000"
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 2
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "http"
+ "appIdObjects":
+ - "http"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "hopeSuccessNumber": 1
+ "command": 'wget --debug -q -O- --user-agent "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/97.0.4692.99 Safari/537.36" --header="Cookie: csrftoken=L8xCyp4D6yX8hh2ee98AvLkw8kHRQqTM; mid=YkUR9gALAAEG7tdhLh3ZpwCbXgjA; ig_did=4ECFEFB4-AFDD-4527-B616-97805C48D694; ig_nrcb=1" https://www.paypal.com/hk/home'
+ "commandRes": "defaultCert"
+ "logQueryParam":
+ -
+ "queryFiledKey": "http_host"
+ "queryValue": "paypal.com"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_HTTP_HOST"
+ "objectType": "fqdn"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "*w.paypal.com"
+ -
+ "protocolField": "TSG_FIELD_HTTP_URL"
+ "objectType": "url"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "*/hk/home"
+ -
+ "protocolField": "TSG_FIELD_HTTP_REQ_HDR"
+ "objectType": "http_signature"
+ "objectSubType": "User-Agent"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "Mozilla/5.0*"
+ "district": "User-Agent"
+ -
+ "protocolField": "TSG_FIELD_HTTP_RES_HDR"
+ "objectType": "http_signature"
+ "objectSubType": "Content-Type"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "text/html"
+ "district": "Content-Type"
diff --git a/other/data/proxy/http/proxy-http-run_script-host-url-data.yaml b/other/data/proxy/http/proxy-http-run_script-host-url-data.yaml
new file mode 100644
index 0000000..7906b3b
--- /dev/null
+++ b/other/data/proxy/http/proxy-http-run_script-host-url-data.yaml
@@ -0,0 +1,56 @@
+#注意keywordArray下的关键字必须为数组形式
+"run_script-host-url_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "proxy-run_script-host-url-001"
+ "policyType": "pxy_manipulation"
+ "isGre": 0
+ "logType": "proxy_event"
+ "action": "manipulation"
+ "method": "run_script"
+ "html_profile":
+ "responseUrl": "/v1/policy/profile/runscript"
+ "pageFiles": "runScriptFiles"
+ "filName": "run_script_replace_reqbody.lua"
+ "flag": "runScript"
+ "feature": "1000000"
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 2
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "http"
+ "appIdObjects":
+ - "http"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "hopeSuccessNumber": 1
+ "command": 'curl --connect-timeout 5 -m 10 -H "Content-Type:application/json;charset=UTF-8" -X POST -d "{\"requestbody\":\"hello\",\"setcook\":\"asdf\",\"contenttype\": \"charset\",\"responsebody\": \"resbody\"}" -kv --user-agent "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.70 Safari/537.36" http://open.node.com:180/go | iconv -f utf-8 -t gbk'
+ "commandRes": "nihao"
+ "logQueryParam":
+ -
+ "queryFiledKey": "http_host"
+ "queryValue": "open.node.com"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_HTTP_HOST"
+ "objectType": "fqdn"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "$open.node.com"
+ -
+ "protocolField": "TSG_FIELD_HTTP_URL"
+ "objectType": "url"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "node"
diff --git a/other/data/proxy/http/proxy-http-run_script-host-url-reqheader-data.yaml b/other/data/proxy/http/proxy-http-run_script-host-url-reqheader-data.yaml
new file mode 100644
index 0000000..d0d2c18
--- /dev/null
+++ b/other/data/proxy/http/proxy-http-run_script-host-url-reqheader-data.yaml
@@ -0,0 +1,128 @@
+#注意keywordArray下的关键字必须为数组形式
+"run_script-host-url-reqheader_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "proxy-run_script-host-url-reqheader-001"
+ "policyType": "pxy_manipulation"
+ "isGre": 0
+ "logType": "proxy_event"
+ "action": "manipulation"
+ "method": "run_script"
+ "html_profile":
+ "responseUrl": "/v1/policy/profile/runscript"
+ "pageFiles": "runScriptFiles"
+ "filName": "run_script_hijack.lua"
+ "flag": "runScript"
+ "feature": "1000000"
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 2
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "http"
+ "appIdObjects":
+ - "http"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "hopeSuccessNumber": 1
+ "command": 'wget --debug -q -O- --user-agent "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/97.0.4692.99 Safari/537.36" --header="Cookie: csrftoken=L8xCyp4D6yX8hh2ee98AvLkw8kHRQqTM; mid=YkUR9gALAAEG7tdhLh3ZpwCbXgjA; ig_did=4ECFEFB4-AFDD-4527-B616-97805C48D694; ig_nrcb=1" https://www.mail.ru/'
+ "commandRes": "mail.ru"
+ "logQueryParam":
+ -
+ "queryFiledKey": "http_host"
+ "queryValue": "www.mail.ru"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_HTTP_HOST"
+ "objectType": "fqdn"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "$www.mail.ru"
+ -
+ "protocolField": "TSG_FIELD_HTTP_URL"
+ "objectType": "url"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "mail.ru"
+ -
+ "protocolField": "TSG_FIELD_HTTP_REQ_HDR"
+ "objectType": "http_signature"
+ "objectSubType": "User-Agent"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "Mozilla/5.0*"
+ "district": "User-Agent"
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "proxy-run_script-host-url-reqheader-002"
+ "policyType": "pxy_manipulation"
+ "isGre": 0
+ "logType": "proxy_event"
+ "action": "manipulation"
+ "method": "run_script"
+ "html_profile":
+ "responseUrl": "/v1/policy/profile/runscript"
+ "pageFiles": "runScriptFiles"
+ "filName": "run_script_replace_resbody.lua"
+ "flag": "runScript"
+ "feature": "1000000"
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 2
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "http"
+ "appIdObjects":
+ - "http"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "hopeSuccessNumber": 1
+ "command": 'wget --debug -q -O- --user-agent "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/97.0.4692.99 Safari/537.36" --header="Cookie: csrftoken=L8xCyp4D6yX8hh2ee98AvLkw8kHRQqTM; mid=YkUR9gALAAEG7tdhLh3ZpwCbXgjA; ig_did=4ECFEFB4-AFDD-4527-B616-97805C48D694; ig_nrcb=1" https://www.youtube.com/'
+ "commandRes": "happy"
+ "logQueryParam":
+ -
+ "queryFiledKey": "http_host"
+ "queryValue": "youtube.com"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_HTTP_HOST"
+ "objectType": "fqdn"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "*youtube.com"
+ -
+ "protocolField": "TSG_FIELD_HTTP_URL"
+ "objectType": "url"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "youtube"
+ -
+ "protocolField": "TSG_FIELD_HTTP_REQ_HDR"
+ "objectType": "http_signature"
+ "objectSubType": "User-Agent"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "Mozilla/5.0*"
+ "district": "User-Agent"
diff --git a/other/data/proxy/http/proxy-http-run_script-host-url-reqheader-resheader-data.yaml b/other/data/proxy/http/proxy-http-run_script-host-url-reqheader-resheader-data.yaml
new file mode 100644
index 0000000..687002c
--- /dev/null
+++ b/other/data/proxy/http/proxy-http-run_script-host-url-reqheader-resheader-data.yaml
@@ -0,0 +1,74 @@
+#注意keywordArray下的关键字必须为数组形式
+"run_script-host-url-reqheader-resheader_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "proxy-run_script-host-url-reqheader-resheader-001"
+ "policyType": "pxy_manipulation"
+ "isGre": 0
+ "logType": "proxy_event"
+ "action": "manipulation"
+ "method": "run_script"
+ "html_profile":
+ "responseUrl": "/v1/policy/profile/runscript"
+ "pageFiles": "runScriptFiles"
+ "filName": "run_script_edit_resp_head.lua"
+ "flag": "runScript"
+ "feature": "1000000"
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 2
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "http"
+ "appIdObjects":
+ - "http"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "hopeSuccessNumber": 1
+ "command": 'wget --debug -q -O- --user-agent "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/97.0.4692.99 Safari/537.36" --header="Cookie: csrftoken=L8xCyp4D6yX8hh2ee98AvLkw8kHRQqTM; mid=YkUR9gALAAEG7tdhLh3ZpwCbXgjA; ig_did=4ECFEFB4-AFDD-4527-B616-97805C48D694; ig_nrcb=1" https://www.paypal.com/hk/home'
+ "commandRes": "defaultCert"
+ "logQueryParam":
+ -
+ "queryFiledKey": "http_host"
+ "queryValue": "paypal.com"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_HTTP_HOST"
+ "objectType": "fqdn"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "*w.paypal.com"
+ -
+ "protocolField": "TSG_FIELD_HTTP_URL"
+ "objectType": "url"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "*/hk/home"
+ -
+ "protocolField": "TSG_FIELD_HTTP_REQ_HDR"
+ "objectType": "http_signature"
+ "objectSubType": "User-Agent"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "Mozilla/5.0*"
+ "district": "User-Agent"
+ -
+ "protocolField": "TSG_FIELD_HTTP_RES_HDR"
+ "objectType": "http_signature"
+ "objectSubType": "Content-Type"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "text/html"
+ "district": "Content-Type"
diff --git a/other/data/proxy/http/proxy-http-run_script-host-url-resheader-data.yaml b/other/data/proxy/http/proxy-http-run_script-host-url-resheader-data.yaml
new file mode 100644
index 0000000..0f52b67
--- /dev/null
+++ b/other/data/proxy/http/proxy-http-run_script-host-url-resheader-data.yaml
@@ -0,0 +1,65 @@
+#注意keywordArray下的关键字必须为数组形式
+"run_script-host-url-resheader_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "proxy-run_script-host-url-resheader-001"
+ "policyType": "pxy_manipulation"
+ "isGre": 0
+ "logType": "proxy_event"
+ "action": "manipulation"
+ "method": "run_script"
+ "html_profile":
+ "responseUrl": "/v1/policy/profile/runscript"
+ "pageFiles": "runScriptFiles"
+ "filName": "run_script_insert.lua"
+ "flag": "runScript"
+ "feature": "1000000"
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 2
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "http"
+ "appIdObjects":
+ - "http"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "hopeSuccessNumber": 1
+ "command": "wget --debug -q -O- https://www.netflix.com/hk-en/"
+ "commandRes": "ALERT"
+ "logQueryParam":
+ -
+ "queryFiledKey": "http_host"
+ "queryValue": "netflix.com"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_HTTP_HOST"
+ "objectType": "fqdn"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "*netflix.com"
+ -
+ "protocolField": "TSG_FIELD_HTTP_URL"
+ "objectType": "url"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "*com/hk-en/"
+ -
+ "protocolField": "TSG_FIELD_HTTP_RES_HDR"
+ "objectType": "http_signature"
+ "objectSubType": "Content-Type"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "text/html; charset=utf-8"
+ "district": "Content-Type"
diff --git a/other/data/proxy/http/proxy-http-run_script-url-data.yaml b/other/data/proxy/http/proxy-http-run_script-url-data.yaml
new file mode 100644
index 0000000..7ccbb55
--- /dev/null
+++ b/other/data/proxy/http/proxy-http-run_script-url-data.yaml
@@ -0,0 +1,233 @@
+#注意keywordArray下的关键字必须为数组形式
+"run_script-url_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "proxy-run_script-url-005"
+ "policyType": "pxy_manipulation"
+ "isGre": 0
+ "logType": "proxy_event"
+ "action": "manipulation"
+ "method": "run_script"
+ "html_profile":
+ "responseUrl": "/v1/policy/profile/runscript"
+ "pageFiles": "runScriptFiles"
+ "filName": "run_script_log_error_replace_resbody.lua"
+ "flag": "runScript"
+ "feature": "1"
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 2
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "http"
+ "appIdObjects":
+ - "http"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "hopeSuccessNumber": 1
+ "command": "wget --debug -q -O- https://www.facebook.com/"
+ "commandRes": "HelloWorld"
+ "logQueryParam":
+ -
+ "queryFiledKey": "http_host"
+ "queryValue": "www.facebook.com"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_HTTP_URL"
+ "objectType": "url"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "facebook"
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "proxy-run_script-url-004"
+ "policyType": "pxy_manipulation"
+ "isGre": 0
+ "logType": "proxy_event"
+ "action": "manipulation"
+ "method": "run_script"
+ "html_profile":
+ "responseUrl": "/v1/policy/profile/runscript"
+ "pageFiles": "runScriptFiles"
+ "filName": "run_script_log_error_replace_req_head.lua"
+ "flag": "runScript"
+ "feature": "1000000"
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 2
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "http"
+ "appIdObjects":
+ - "http"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "hopeSuccessNumber": 1
+ "command": 'wget --debug -q -O- --user-agent "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/97.0.4692.99 Safari/537.36" --header="Cookie: csrftoken=L8xCyp4D6yX8hh2ee98AvLkw8kHRQqTM; mid=YkUR9gALAAEG7tdhLh3ZpwCbXgjA; ig_did=4ECFEFB4-AFDD-4527-B616-97805C48D694; ig_nrcb=1" https://www.sojson.com/ascii.html'
+ "commandRes": "defaultCert"
+ "logQueryParam":
+ -
+ "queryFiledKey": "http_host"
+ "queryValue": "www.sojson.com"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_HTTP_URL"
+ "objectType": "url"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "ascii.html"
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "proxy-run_script-url-002"
+ "policyType": "pxy_manipulation"
+ "isGre": 0
+ "logType": "proxy_event"
+ "action": "manipulation"
+ "method": "run_script"
+ "html_profile":
+ "responseUrl": "/v1/policy/profile/runscript"
+ "pageFiles": "runScriptFiles"
+ "filName": "run_script_edit_req_head.lua"
+ "flag": "runScript"
+ "feature": "1000000"
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 2
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "http"
+ "appIdObjects":
+ - "http"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "hopeSuccessNumber": 1
+ "command": "wget --debug -q -O- http://poplar.ru/"
+ "commandRes": "poplar"
+ "logQueryParam":
+ -
+ "queryFiledKey": "http_url"
+ "queryValue": "poplar"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_HTTP_URL"
+ "objectType": "url"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "popl*"
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "proxy-run_script-url-001"
+ "policyType": "pxy_manipulation"
+ "isGre": 0
+ "logType": "proxy_event"
+ "action": "manipulation"
+ "method": "run_script"
+ "html_profile":
+ "responseUrl": "/v1/policy/profile/runscript"
+ "pageFiles": "runScriptFiles"
+ "filName": "run_script_redirect_uri.lua"
+ "flag": "runScript"
+ "feature": "1000000"
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 2
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "http"
+ "appIdObjects":
+ - "http"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "hopeSuccessNumber": 1
+ "command": "curl -kv https://www.euro-football.ru/forecast"
+ "commandRes": "defaultCert"
+ "logQueryParam":
+ -
+ "queryFiledKey": "http_host"
+ "queryValue": "football.ru"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_HTTP_URL"
+ "objectType": "url"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "www.euro-football.ru"
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "proxy-run_script-url-003"
+ "policyType": "pxy_manipulation"
+ "isGre": 0
+ "logType": "proxy_event"
+ "action": "manipulation"
+ "method": "run_script"
+ "html_profile":
+ "responseUrl": "/v1/policy/profile/runscript"
+ "pageFiles": "runScriptFiles"
+ "filName": "run_script_edit_res_head_and_res_body.lua"
+ "flag": "runScript"
+ "feature": "1000000"
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 2
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "http"
+ "appIdObjects":
+ - "http"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "hopeSuccessNumber": 1
+ "command": "wget --debug -q -O- https://twitter.com/"
+ "commandRes": "tuituitui"
+ "logQueryParam":
+ -
+ "queryFiledKey": "http_host"
+ "queryValue": "twitter.com"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_HTTP_URL"
+ "objectType": "url"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "twitter"
+
diff --git a/other/data/security/dingding/security-dingding-deny-only-IpAndApplication-call-data.yaml b/other/data/security/dingding/security-dingding-deny-only-IpAndApplication-call-data.yaml
index f1ba088..60f51f4 100644
--- a/other/data/security/dingding/security-dingding-deny-only-IpAndApplication-call-data.yaml
+++ b/other/data/security/dingding/security-dingding-deny-only-IpAndApplication-call-data.yaml
@@ -18,7 +18,7 @@
"isCall": 1
"scriptSystem": "android"
"scriptModule": "vivoV2031A"
- "taskDescr": "hbn创建测试任务接口测试"
+ "taskDescr": "security-dingding-deny-only-IpAndApplication-call"
"appinfo":
"packageUrl": "http://fileupload.pro.testin.cn/group1/M00/00/63/Cipe2WEsgLeANJyhABLibjmsFwk298.apk?filename=88a3f9e6-9ab0-4312-aa4c-d1a02125ed31.apk"
"syspfId": 1
@@ -70,7 +70,7 @@
-
"scriptSystem": "android"
"scriptModule": "vivoV2031A"
- "taskDescr": "hbn创建测试任务接口测试"
+ "taskDescr": "security-dingding-deny-only-IpAndApplication-call"
"appinfo":
"packageUrl": "http://fileupload.pro.testin.cn/group1/M00/00/63/Cipe2WEsgLeANJyhABLibjmsFwk298.apk?filename=88a3f9e6-9ab0-4312-aa4c-d1a02125ed31.apk"
"syspfId": 1
@@ -123,7 +123,7 @@
-
"scriptSystem": "android"
"scriptModule": "vivoV2031A"
- "taskDescr": "hbn创建测试任务接口测试"
+ "taskDescr": "security-dingding-deny-only-IpAndApplication-call"
"appinfo":
"packageUrl": "http://fileupload.pro.testin.cn/group1/M00/00/63/Cipe2WEsgLeANJyhABLibjmsFwk298.apk?filename=88a3f9e6-9ab0-4312-aa4c-d1a02125ed31.apk"
"syspfId": 1
@@ -175,7 +175,7 @@
-
"scriptSystem": "android"
"scriptModule": "vivoV2031A"
- "taskDescr": "hbn创建测试任务接口测试"
+ "taskDescr": "security-dingding-deny-only-IpAndApplication-call"
"appinfo":
"packageUrl": "http://fileupload.pro.testin.cn/group1/M00/00/63/Cipe2WEsgLeANJyhABLibjmsFwk298.apk?filename=88a3f9e6-9ab0-4312-aa4c-d1a02125ed31.apk"
"syspfId": 1
diff --git a/other/data/security/dns/security-dns-allow-fqdn-exactly-data.yaml b/other/data/security/dns/security-dns-allow-fqdn-exactly-data.yaml
new file mode 100644
index 0000000..7215711
--- /dev/null
+++ b/other/data/security/dns/security-dns-allow-fqdn-exactly-data.yaml
@@ -0,0 +1,96 @@
+#注意keywordArray下的关键字必须为数组形式
+"allow-fqdn-exactly_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-dns-allow-fqdn-exactly-0001"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "action": "allow"
+ "isGre": 0
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 1
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "dns"
+ "appIdObjects":
+ - "dns"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "hopeSuccessNumber": 1
+ "command": "nslookup poplar.ru"
+ "commandRes": "poplar.ru"
+ "logQueryParam":
+ -
+ "queryFiledKey": "common_schema_type"
+ "queryValue": "DNS"
+ -
+ "queryFiledKey": "dns_qname"
+ "queryValue": "poplar.ru"
+ -
+ "hopeSuccessNumber": 1
+ "command": "nslookup www.mail.ru"
+ "commandRes": "www.mail.ru"
+ "logQueryParam":
+ -
+ "queryFiledKey": "common_schema_type"
+ "queryValue": "DNS"
+ -
+ "queryFiledKey": "dns_qname"
+ "queryValue": "www.mail.ru"
+ -
+ "hopeSuccessNumber": 1
+ "command": "nslookup www.km.ru"
+ "commandRes": "www.km.ru"
+ "logQueryParam":
+ -
+ "queryFiledKey": "common_schema_type"
+ "queryValue": "DNS"
+ -
+ "queryFiledKey": "dns_qname"
+ "queryValue": "www.km.ru"
+ -
+ "hopeSuccessNumber": 1
+ "command": "nslookup www.msn.com"
+ "commandRes": "msedge.net"
+ "logQueryParam":
+ -
+ "queryFiledKey": "common_schema_type"
+ "queryValue": "DNS"
+ -
+ "queryFiledKey": "dns_qname"
+ "queryValue": "www.msn.com"
+ -
+ "hopeSuccessNumber": 1
+ "command": "nslookup www.kulichki.com"
+ "commandRes": "www.kulichki.com"
+ "logQueryParam":
+ -
+ "queryFiledKey": "common_schema_type"
+ "queryValue": "DNS"
+ -
+ "queryFiledKey": "dns_qname"
+ "queryValue": "www.kulichki.com"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_DNS_QNAME"
+ "objectType": "fqdn"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "$poplar.ru"
+ - "keywordArray":
+ - "$www.mail.ru"
+ - "keywordArray":
+ - "$www.km.ru"
+ - "keywordArray":
+ - "$www.msn.com"
+ - "keywordArray":
+ - "$www.kulichki.com" \ No newline at end of file
diff --git a/other/data/security/dns/security-dns-allow-fqdn-suffix-data.yaml b/other/data/security/dns/security-dns-allow-fqdn-suffix-data.yaml
new file mode 100644
index 0000000..998a714
--- /dev/null
+++ b/other/data/security/dns/security-dns-allow-fqdn-suffix-data.yaml
@@ -0,0 +1,83 @@
+#注意keywordArray下的关键字必须为数组形式
+"allow-fqdn-suffix_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-dns-allow-fqdn-suffix-0001"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "action": "allow"
+ "isGre": 0
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 1
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "dns"
+ "appIdObjects":
+ - "dns"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "hopeSuccessNumber": 1
+ "command": "nslookup www.kp.ru"
+ "commandRes": "kp.ru"
+ "logQueryParam":
+ -
+ "queryFiledKey": "common_schema_type"
+ "queryValue": "DNS"
+ -
+ "queryFiledKey": "dns_qname"
+ "queryValue": "www.kp.ru"
+ -
+ "hopeSuccessNumber": 1
+ "command": "nslookup tass.ru"
+ "commandRes": "tass.ru"
+ "logQueryParam":
+ -
+ "queryFiledKey": "common_schema_type"
+ "queryValue": "DNS"
+ -
+ "queryFiledKey": "dns_qname"
+ "queryValue": "tass.ru"
+ -
+ "hopeSuccessNumber": 1
+ "command": "nslookup russiajournal.com"
+ "commandRes": "russiajournal.com"
+ "logQueryParam":
+ -
+ "queryFiledKey": "common_schema_type"
+ "queryValue": "DNS"
+ -
+ "queryFiledKey": "dns_qname"
+ "queryValue": "russiajournal.com"
+ -
+ "hopeSuccessNumber": 1
+ "command": "nslookup www.times.spb.ru"
+ "commandRes": "www.times.spb.ru"
+ "logQueryParam":
+ -
+ "queryFiledKey": "common_schema_type"
+ "queryValue": "DNS"
+ -
+ "queryFiledKey": "dns_qname"
+ "queryValue": "www.times.spb.ru"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_DNS_QNAME"
+ "objectType": "fqdn"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "*.kp.ru"
+ - "keywordArray":
+ - "*tass.ru"
+ - "keywordArray":
+ - "*journal.com"
+ - "keywordArray":
+ - "*.spb.ru" \ No newline at end of file
diff --git a/other/data/security/dns/security-dns-allow-only-ipAndApplication-data.yaml b/other/data/security/dns/security-dns-allow-only-ipAndApplication-data.yaml
index bc80c05..7305847 100644
--- a/other/data/security/dns/security-dns-allow-only-ipAndApplication-data.yaml
+++ b/other/data/security/dns/security-dns-allow-only-ipAndApplication-data.yaml
@@ -63,4 +63,68 @@
- "addItemList":
-
"ip": "1.1.1.1"
- "port": "0-65535" \ No newline at end of file
+ "port": "0-65535"
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-dns-allow-allow-only-IpAndApplication-2"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "action": "allow"
+ "isGre": 0
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 0
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "dns"
+ "appIdObjects":
+ - "dns"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "hopeSuccessNumber": 1
+ "command": "nslookup www.youtube.com"
+ "commandRes": "youtube-ui.l.google.com"
+ "logQueryParam":
+ -
+ "queryFiledKey": "common_schema_type"
+ "queryValue": "empty"
+ -
+ "hopeSuccessNumber": 1
+ "command": "nslookup www.facebook.com"
+ "commandRes": "www.facebook.com"
+ "logQueryParam":
+ -
+ "queryFiledKey": "common_schema_type"
+ "queryValue": "empty"
+ -
+ "hopeSuccessNumber": 1
+ "command": "nslookup www.google.com"
+ "commandRes": "www.google.com"
+ "logQueryParam":
+ -
+ "queryFiledKey": "common_schema_type"
+ "queryValue": "empty"
+ -
+ "hopeSuccessNumber": 1
+ "command": "nslookup telegram.org"
+ "commandRes": "telegram.org"
+ "logQueryParam":
+ -
+ "queryFiledKey": "common_schema_type"
+ "queryValue": "empty"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_SECURITY_SOURCE_ADDR"
+ "objectType": "ip"
+ "objectSubType": "endpoint"
+ "objectList":
+ - "addItemList":
+ -
+ "ip": "1.1.1.1"
+ "port": "0-65535" \ No newline at end of file
diff --git a/other/data/security/dns/security-dns-deny-fqdn-exactly-data.yaml b/other/data/security/dns/security-dns-deny-fqdn-exactly-data.yaml
index 2c8d175..f4b8da4 100644
--- a/other/data/security/dns/security-dns-deny-fqdn-exactly-data.yaml
+++ b/other/data/security/dns/security-dns-deny-fqdn-exactly-data.yaml
@@ -1,9 +1,9 @@
#注意keywordArray下的关键字必须为数组形式
-"deny-fqdn-exactly_data":
+"deny-drop-fqdn-exactly_data":
-
"opAction": "add"
"returnData": 1
- "policyName": "security-dns-deny-fqdn-exactly-0001"
+ "policyName": "security-dns-deny-drop-fqdn-exactly"
"policyType": "tsg_security"
"logType": "security_event"
"action": "deny"
@@ -28,7 +28,7 @@
"logQueryParam":
-
"queryFiledKey": "dns_qname"
- "queryValue": "www.youtube.com"
+ "queryValue": "youtube"
-
"hopeSuccessNumber": 1
"command": "nslookup www.facebook.com -timeout=1"
@@ -36,7 +36,7 @@
"logQueryParam":
-
"queryFiledKey": "dns_qname"
- "queryValue": "www.facebook.com"
+ "queryValue": "facebook"
-
"hopeSuccessNumber": 1
"command": "nslookup telegram.org -timeout=1"
@@ -44,7 +44,7 @@
"logQueryParam":
-
"queryFiledKey": "dns_qname"
- "queryValue": "telegram.org"
+ "queryValue": "telegram"
-
"hopeSuccessNumber": 1
"command": "nslookup tengrinews.kz -timeout=1"
@@ -52,7 +52,7 @@
"logQueryParam":
-
"queryFiledKey": "dns_qname"
- "queryValue": "tengrinews.kz"
+ "queryValue": "tengrinews"
"isValid": 1
"scheduleId":
"condation":
@@ -70,10 +70,11 @@
- "$telegram.org"
- "keywordArray":
- "$tengrinews.kz"
+"deny-tamper-fqdn-exactly_data":
-
"opAction": "add"
"returnData": 1
- "policyName": "security-ssl-deny-fqdn-exactly-0002"
+ "policyName": "security-ssl-deny-tamper-fqdn-exactly"
"policyType": "tsg_security"
"logType": "security_event"
"action": "deny"
@@ -98,7 +99,7 @@
"logQueryParam":
-
"queryFiledKey": "dns_qname"
- "queryValue": "www.youtube.com"
+ "queryValue": "youtube"
-
"hopeSuccessNumber": 1
"command": "nslookup www.facebook.com -timeout=1"
@@ -106,7 +107,7 @@
"logQueryParam":
-
"queryFiledKey": "dns_qname"
- "queryValue": "www.facebook.com"
+ "queryValue": "facebook"
-
"hopeSuccessNumber": 1
"command": "nslookup telegram.org -timeout=1"
@@ -139,11 +140,12 @@
- "keywordArray":
- "$telegram.org"
- "keywordArray":
- - "$tengrinews.kz"
+ - "$tengrinews.kz"
+"deny-drop-sendIcmp-fqdn-exactly_data":
-
"opAction": "add"
"returnData": 1
- "policyName": "security-ssl-deny-fqdn-exactly-0003"
+ "policyName": "security-ssl-deny-drop-sendIcmp-fqdn-exactly"
"policyType": "tsg_security"
"logType": "security_event"
"action": "deny"
@@ -193,10 +195,11 @@
- "$www.hupu.com"
- "keywordArray":
- "$www.prlib.ru"
+"deny-redirect-fqdn-exactly_data":
-
"opAction": "add"
"returnData": 1
- "policyName": "security-ssl-deny-fqdn-exactly-0004"
+ "policyName": "security-ssl-deny-redirect-fqdn-exactly"
"policyType": "tsg_security"
"logType": "security_event"
"action": "deny"
@@ -249,7 +252,7 @@
"logQueryParam":
-
"queryFiledKey": "dns_qname"
- "queryValue": "www.youtube.com"
+ "queryValue": "youtube"
-
"hopeSuccessNumber": 1
"command": "nslookup www.facebook.com -timeout=1"
@@ -257,7 +260,7 @@
"logQueryParam":
-
"queryFiledKey": "dns_qname"
- "queryValue": "www.facebook.com"
+ "queryValue": "facebook"
-
"hopeSuccessNumber": 1
"command": "nslookup telegram.org -timeout=1"
@@ -290,5 +293,160 @@
- "keywordArray":
- "$telegram.org"
- "keywordArray":
- - "$tengrinews.kz"
- \ No newline at end of file
+ - "$tengrinews.kz"
+"deny-drop-noLog-fqdn-exactly_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-dns-deny-drop-noLog-fqdn-exactly"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "action": "deny"
+ "method": "drop"
+ "isGre": 0
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 0
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "dns"
+ "appIdObjects":
+ - "dns"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "hopeSuccessNumber": 1
+ "command": "nslookup www.youtube.com -timeout=1"
+ "commandRes": "connection timed out"
+ "logQueryParam":
+ -
+ "queryFiledKey": "dns_qname"
+ "queryValue": "empty"
+ -
+ "hopeSuccessNumber": 1
+ "command": "nslookup www.facebook.com -timeout=1"
+ "commandRes": "connection timed out"
+ "logQueryParam":
+ -
+ "queryFiledKey": "dns_qname"
+ "queryValue": "empty"
+ -
+ "hopeSuccessNumber": 1
+ "command": "nslookup telegram.org -timeout=1"
+ "commandRes": "connection timed out"
+ "logQueryParam":
+ -
+ "queryFiledKey": "dns_qname"
+ "queryValue": "empty"
+ -
+ "hopeSuccessNumber": 1
+ "command": "nslookup tengrinews.kz -timeout=1"
+ "commandRes": "connection timed out"
+ "logQueryParam":
+ -
+ "queryFiledKey": "dns_qname"
+ "queryValue": "empty"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_DNS_QNAME"
+ "objectType": "fqdn"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "$www.youtube.com"
+ - "keywordArray":
+ - "$www.facebook.com"
+ - "keywordArray":
+ - "$telegram.org"
+ - "keywordArray":
+ - "$tengrinews.kz"
+"deny-drop-capture-fqdn-exactly_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-dns-deny-drop-capture-fqdn-exactly"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "action": "deny"
+ "method": "drop"
+ "isGre": 0
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 1
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "dns"
+ "appIdObjects":
+ - "dns"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "logCapture": 1
+ "captureDepth": 4002
+ "testMachine":
+ -
+ "hopeSuccessNumber": 1
+ "command": "nslookup www.youtube.com -timeout=1"
+ "commandRes": "connection timed out"
+ "logQueryParam":
+ -
+ "queryFiledKey": "dns_qname"
+ "queryValue": "youtube"
+ -
+ "queryFiledKey": "common_packet_capture_file"
+ "queryValue": "hostip"
+ -
+ "hopeSuccessNumber": 1
+ "command": "nslookup www.facebook.com -timeout=1"
+ "commandRes": "connection timed out"
+ "logQueryParam":
+ -
+ "queryFiledKey": "dns_qname"
+ "queryValue": "facebook"
+ -
+ "queryFiledKey": "common_packet_capture_file"
+ "queryValue": "hostip"
+ -
+ "hopeSuccessNumber": 1
+ "command": "nslookup telegram.org -timeout=1"
+ "commandRes": "connection timed out"
+ "logQueryParam":
+ -
+ "queryFiledKey": "dns_qname"
+ "queryValue": "telegram.org"
+ -
+ "queryFiledKey": "common_packet_capture_file"
+ "queryValue": "hostip"
+ -
+ "hopeSuccessNumber": 1
+ "command": "nslookup tengrinews.kz -timeout=1"
+ "commandRes": "connection timed out"
+ "logQueryParam":
+ -
+ "queryFiledKey": "dns_qname"
+ "queryValue": "tengrinews.kz"
+ -
+ "queryFiledKey": "common_packet_capture_file"
+ "queryValue": "hostip"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_DNS_QNAME"
+ "objectType": "fqdn"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "$www.youtube.com"
+ - "keywordArray":
+ - "$www.facebook.com"
+ - "keywordArray":
+ - "$telegram.org"
+ - "keywordArray":
+ - "$tengrinews.kz" \ No newline at end of file
diff --git a/other/data/security/dns/security-dns-deny-fqdn-suffix-data.yaml b/other/data/security/dns/security-dns-deny-fqdn-suffix-data.yaml
index 2364fa4..cc0143c 100644
--- a/other/data/security/dns/security-dns-deny-fqdn-suffix-data.yaml
+++ b/other/data/security/dns/security-dns-deny-fqdn-suffix-data.yaml
@@ -1,9 +1,9 @@
#注意keywordArray下的关键字必须为数组形式
-"deny-fqdn-suffix_data":
+"deny-drop-fqdn-suffix_data":
-
"opAction": "add"
"returnData": 1
- "policyName": "security-dns-deny-fqdn-suffix-0001"
+ "policyName": "security-dns-deny-drop-fqdn-suffix"
"policyType": "tsg_security"
"logType": "security_event"
"action": "deny"
@@ -80,10 +80,11 @@
- "*libili.com"
- "keywordArray":
- "*inews.kz"
+"deny-tamper-fqdn-suffix_data":
-
"opAction": "add"
"returnData": 1
- "policyName": "security-ssl-deny-fqdn-suffix-0002"
+ "policyName": "security-ssl-deny-tamper-fqdn-suffix"
"policyType": "tsg_security"
"logType": "security_event"
"action": "deny"
@@ -149,11 +150,12 @@
- "keywordArray":
- "*gram.org"
- "keywordArray":
- - "*inews.kz"
+ - "*inews.kz"
+"deny-drop-sendIcmp-fqdn-suffix_data":
-
"opAction": "add"
"returnData": 1
- "policyName": "security-ssl-deny-fqdn-exactly-0003"
+ "policyName": "security-ssl-deny-drop-sendIcmp-fqdn-exactly"
"policyType": "tsg_security"
"logType": "security_event"
"action": "deny"
@@ -203,10 +205,11 @@
- "*w.hupu.com"
- "keywordArray":
- "*prlib.ru"
+"deny-redirect-fqdn-suffix_data":
-
"opAction": "add"
"returnData": 1
- "policyName": "security-ssl-deny-fqdn-exactly-0004"
+ "policyName": "security-ssl-deny-redirect-fqdn-exactly"
"policyType": "tsg_security"
"logType": "security_event"
"action": "deny"
@@ -300,4 +303,85 @@
- "keywordArray":
- "*gram.org"
- "keywordArray":
- - "*inews.kz"
+ - "*inews.kz"
+"deny-drop-noLog-fqdn-suffix_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-dns-deny-drop-noLog-fqdn-suffix"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "action": "deny"
+ "method": "drop"
+ "isGre": 0
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 0
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "dns"
+ "appIdObjects":
+ - "dns"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "hopeSuccessNumber": 1
+ "command": "nslookup www.youtube.com -timeout=1"
+ "commandRes": "connection timed out"
+ "logQueryParam":
+ -
+ "queryFiledKey": "dns_qname"
+ "queryValue": "empty"
+ -
+ "hopeSuccessNumber": 1
+ "command": "nslookup www.facebook.com -timeout=1"
+ "commandRes": "connection timed out"
+ "logQueryParam":
+ -
+ "queryFiledKey": "dns_qname"
+ "queryValue": "empty"
+ -
+ "hopeSuccessNumber": 1
+ "command": "nslookup telegram.org -timeout=1"
+ "commandRes": "connection timed out"
+ "logQueryParam":
+ -
+ "queryFiledKey": "dns_qname"
+ "queryValue": "empty"
+ -
+ "hopeSuccessNumber": 1
+ "command": "nslookup www.bilibili.com -timeout=1"
+ "commandRes": "connection timed out"
+ "logQueryParam":
+ -
+ "queryFiledKey": "dns_qname"
+ "queryValue": "empty"
+ -
+ "hopeSuccessNumber": 1
+ "command": "nslookup tengrinews.kz -timeout=1"
+ "commandRes": "connection timed out"
+ "logQueryParam":
+ -
+ "queryFiledKey": "dns_qname"
+ "queryValue": "empty"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_DNS_QNAME"
+ "objectType": "fqdn"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "*.youtube.com"
+ - "keywordArray":
+ - "*w.facebook.com"
+ - "keywordArray":
+ - "*gram.org"
+ - "keywordArray":
+ - "*libili.com"
+ - "keywordArray":
+ - "*inews.kz" \ No newline at end of file
diff --git a/other/data/security/dns/security-dns-deny-only-IpAndApplication-data.yaml b/other/data/security/dns/security-dns-deny-only-IpAndApplication-data.yaml
index 741669f..2586ef1 100644
--- a/other/data/security/dns/security-dns-deny-only-IpAndApplication-data.yaml
+++ b/other/data/security/dns/security-dns-deny-only-IpAndApplication-data.yaml
@@ -1,9 +1,9 @@
#注意keywordArray下的关键字必须为数组形式
-"deny-only-IpAndApplication_data":
+"deny-drop-only-IpAndApplication_data":
-
"opAction": "add"
"returnData": 1
- "policyName": "security-dns-deny-only-IpAndApplication-0001"
+ "policyName": "security-dns-deny-drop-only-IpAndApplication"
"policyType": "tsg_security"
"logType": "security_event"
"action": "deny"
@@ -80,11 +80,12 @@
- "addItemList":
-
"ip": "1.1.1.1"
- "port": "0-65535"
+ "port": "0-65535"
+"deny-tamper-only-IpAndApplication_data":
-
"opAction": "add"
"returnData": 1
- "policyName": "security-ssl-deny-only-IpAndApplication-0002"
+ "policyName": "security-ssl-deny-tamper-only-IpAndApplication"
"policyType": "tsg_security"
"logType": "security_event"
"action": "deny"
@@ -161,11 +162,12 @@
- "addItemList":
-
"ip": "1.1.1.1"
- "port": "0-65535"
+ "port": "0-65535"
+"deny-drop-sendicmp-only-IpAndApplication_data":
-
"opAction": "add"
"returnData": 1
- "policyName": "security-ssl-deny-only-IpAndApplication-0003"
+ "policyName": "security-ssl-deny-drop-sendicmp-only-IpAndApplication"
"policyType": "tsg_security"
"logType": "security_event"
"action": "deny"
@@ -211,11 +213,12 @@
- "addItemList":
-
"ip": "1.1.1.1"
- "port": "0-65535"
+ "port": "0-65535"
+"deny-redirect-only-IpAndApplication_data":
-
"opAction": "add"
"returnData": 1
- "policyName": "security-ssl-deny-only-IpAndApplication-0004"
+ "policyName": "security-ssl-deny-redirect-only-IpAndApplication"
"policyType": "tsg_security"
"logType": "security_event"
"action": "deny"
diff --git a/other/data/security/dns/security-dns-monitor-fqdn-exactly-data.yaml b/other/data/security/dns/security-dns-monitor-fqdn-exactly-data.yaml
index 926d194..da8808d 100644
--- a/other/data/security/dns/security-dns-monitor-fqdn-exactly-data.yaml
+++ b/other/data/security/dns/security-dns-monitor-fqdn-exactly-data.yaml
@@ -71,3 +71,74 @@
- "$tengrinews.kz"
- "keywordArray":
- "$www.youtube.com"
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-ssl-monitor-fqdn-exactly-0002"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "action": "monitor"
+ "packet_mirror":
+ "enable": 0
+ "isGre": 0
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 0
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "dns"
+ "appIdObjects":
+ - "dns"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "hopeSuccessNumber": 1
+ "command": "nslookup www.youtube.com"
+ "commandRes": "youtube-ui.l.google.com"
+ "logQueryParam":
+ -
+ "queryFiledKey": "dns_qname"
+ "queryValue": "empty"
+ -
+ "hopeSuccessNumber": 1
+ "command": "nslookup www.facebook.com"
+ "commandRes": "www.facebook.com"
+ "logQueryParam":
+ -
+ "queryFiledKey": "dns_qname"
+ "queryValue": "empty"
+ -
+ "hopeSuccessNumber": 1
+ "command": "nslookup telegram.org"
+ "commandRes": "telegram.org"
+ "logQueryParam":
+ -
+ "queryFiledKey": "dns_qname"
+ "queryValue": "empty"
+ -
+ "hopeSuccessNumber": 1
+ "command": "nslookup tengrinews.kz"
+ "commandRes": "tengrinews.kz"
+ "logQueryParam":
+ -
+ "queryFiledKey": "dns_qname"
+ "queryValue": "empty"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_DNS_QNAME"
+ "objectType": "fqdn"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "$www.facebook.com"
+ - "keywordArray":
+ - "$telegram.org"
+ - "keywordArray":
+ - "$tengrinews.kz"
+ - "keywordArray":
+ - "$www.youtube.com" \ No newline at end of file
diff --git a/other/data/security/dns/security-dns-monitor-fqdn-suffix-data.yaml b/other/data/security/dns/security-dns-monitor-fqdn-suffix-data.yaml
index 89da469..7cc1eb2 100644
--- a/other/data/security/dns/security-dns-monitor-fqdn-suffix-data.yaml
+++ b/other/data/security/dns/security-dns-monitor-fqdn-suffix-data.yaml
@@ -37,7 +37,7 @@
"logQueryParam":
-
"queryFiledKey": "dns_qname"
- "queryValue": "www.facebook.com"
+ "queryValue": "facebook"
-
"hopeSuccessNumber": 1
"command": "nslookup telegram.org"
diff --git a/other/data/security/dns/security-dns-monitor-only-application-data.yaml b/other/data/security/dns/security-dns-monitor-only-application-data.yaml
index a4bc798..cbfcd7b 100644
--- a/other/data/security/dns/security-dns-monitor-only-application-data.yaml
+++ b/other/data/security/dns/security-dns-monitor-only-application-data.yaml
@@ -73,5 +73,77 @@
"scheduleId":
"condation":
-
-
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-dns-monitor-only-Application-0002"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "action": "deny"
+ "method": "drop"
+ "isGre": 0
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 0
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "dns"
+ "appIdObjects":
+ - "dns"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "hopeSuccessNumber": 1
+ "command": "nslookup www.youtube.com"
+ "commandRes": "youtube-ui.l.google.com"
+ "logQueryParam":
+ -
+ "queryFiledKey": "dns_qname"
+ "queryValue": "empty"
+ -
+ "hopeSuccessNumber": 1
+ "command": "nslookup www.facebook.com"
+ "commandRes": "www.facebook.com"
+ "logQueryParam":
+ -
+ "queryFiledKey": "dns_qname"
+ "queryValue": "empty"
+ -
+ "hopeSuccessNumber": 1
+ "command": "nslookup www.google.com"
+ "commandRes": "www.google.com"
+ "logQueryParam":
+ -
+ "queryFiledKey": "dns_qname"
+ "queryValue": "empty"
+ -
+ "hopeSuccessNumber": 1
+ "command": "nslookup telegram.org"
+ "commandRes": "telegram.org"
+ "logQueryParam":
+ -
+ "queryFiledKey": "dns_qname"
+ "queryValue": "empty"
+ -
+ "hopeSuccessNumber": 1
+ "command": "nslookup www.bilibili.com"
+ "commandRes": "i.w.bilicdn1.com"
+ "logQueryParam":
+ -
+ "queryFiledKey": "dns_qname"
+ "queryValue": "empty"
+ -
+ "hopeSuccessNumber": 1
+ "command": "nslookup tengrinews.kz"
+ "commandRes": "tengrinews.kz"
+ "logQueryParam":
+ -
+ "queryFiledKey": "dns_qname"
+ "queryValue": "empty"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
\ No newline at end of file
diff --git a/other/data/security/dns/security-dns-monitor-only-ipAndApplication-data.yaml b/other/data/security/dns/security-dns-monitor-only-ipAndApplication-data.yaml
index d8cd2a7..f9e3256 100644
--- a/other/data/security/dns/security-dns-monitor-only-ipAndApplication-data.yaml
+++ b/other/data/security/dns/security-dns-monitor-only-ipAndApplication-data.yaml
@@ -42,4 +42,45 @@
-
"ip": "1.1.1.1"
"port": "0-65535"
- \ No newline at end of file
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-dns-monitor-only-IpAndApplication-0002"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "action": "monitor"
+ "packet_mirror":
+ "enable": 0
+ "isGre": 0
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 0
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "dns"
+ "appIdObjects":
+ - "dns"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "hopeSuccessNumber": 1
+ "command": "nslookup www.google.com"
+ "commandRes": "www.google.com"
+ "logQueryParam":
+ -
+ "queryFiledKey": "common_schema_type"
+ "queryValue": "empty"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_SECURITY_SOURCE_ADDR"
+ "objectType": "ip"
+ "objectSubType": "endpoint"
+ "objectList":
+ - "addItemList":
+ -
+ "ip": "1.1.1.1"
+ "port": "0-65535" \ No newline at end of file
diff --git a/other/data/security/ftp/security-ftp-allow-account-content-data.yaml b/other/data/security/ftp/security-ftp-allow-account-content-data.yaml
new file mode 100644
index 0000000..01ba45c
--- /dev/null
+++ b/other/data/security/ftp/security-ftp-allow-account-content-data.yaml
@@ -0,0 +1,49 @@
+#注意keywordArray下的关键字必须为数组形式
+"allow-account-content_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-ftp-allow-account-content-0001"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "isGre": 0
+ "action": "allow"
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 1
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "ftp"
+ "appIdObjects":
+ - "ftp"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "ftpUrl": "/autoFtp/english.txt"
+ "hopeResult": "autotest"
+ "hopeSuccessNumber": 1
+ "logQueryParam":
+ -
+ "queryFiledKey": "ftp_account"
+ "queryValue": "ftpuser"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_FTP_ACCOUNT"
+ "objectType": "account"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "$ftpuser"
+ -
+ "protocolField": "TSG_FIELD_FTP_CONTENT"
+ "objectType": "keywords"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "auto*" \ No newline at end of file
diff --git a/other/data/security/ftp/security-ftp-allow-account-exactly-data.yaml b/other/data/security/ftp/security-ftp-allow-account-exactly-data.yaml
new file mode 100644
index 0000000..c4892c3
--- /dev/null
+++ b/other/data/security/ftp/security-ftp-allow-account-exactly-data.yaml
@@ -0,0 +1,41 @@
+#注意keywordArray下的关键字必须为数组形式
+"allow-account-exactly_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-ftp-allow-account-exactly-0001"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "isGre": 0
+ "action": "allow"
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 1
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "ftp"
+ "appIdObjects":
+ - "ftp"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "ftpUrl": "/autoFtp/english.txt"
+ "hopeResult": "autotest"
+ "hopeSuccessNumber": 1
+ "logQueryParam":
+ -
+ "queryFiledKey": "ftp_account"
+ "queryValue": "ftpuser"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_FTP_ACCOUNT"
+ "objectType": "account"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "$ftpuser" \ No newline at end of file
diff --git a/other/data/security/ftp/security-ftp-allow-account-prefix-data.yaml b/other/data/security/ftp/security-ftp-allow-account-prefix-data.yaml
new file mode 100644
index 0000000..e54f5ba
--- /dev/null
+++ b/other/data/security/ftp/security-ftp-allow-account-prefix-data.yaml
@@ -0,0 +1,41 @@
+#注意keywordArray下的关键字必须为数组形式
+"allow-account-prefix_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-ftp-allow-account-prefix-0001"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "isGre": 0
+ "action": "allow"
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 1
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "ftp"
+ "appIdObjects":
+ - "ftp"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "ftpUrl": "/autoFtp/english.txt"
+ "hopeResult": "autotest"
+ "hopeSuccessNumber": 1
+ "logQueryParam":
+ -
+ "queryFiledKey": "ftp_account"
+ "queryValue": "ftpuser"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_FTP_ACCOUNT"
+ "objectType": "account"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "ftpus*" \ No newline at end of file
diff --git a/other/data/security/ftp/security-ftp-allow-account-substring-data.yaml b/other/data/security/ftp/security-ftp-allow-account-substring-data.yaml
new file mode 100644
index 0000000..c7bbb6e
--- /dev/null
+++ b/other/data/security/ftp/security-ftp-allow-account-substring-data.yaml
@@ -0,0 +1,41 @@
+#注意keywordArray下的关键字必须为数组形式
+"allow-account-substring_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-ftp-allow-account-substring-0001"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "isGre": 0
+ "action": "allow"
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 1
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "ftp"
+ "appIdObjects":
+ - "ftp"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "ftpUrl": "/autoFtp/english.txt"
+ "hopeResult": "autotest"
+ "hopeSuccessNumber": 1
+ "logQueryParam":
+ -
+ "queryFiledKey": "ftp_account"
+ "queryValue": "ftpuser"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_FTP_ACCOUNT"
+ "objectType": "account"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "puser" \ No newline at end of file
diff --git a/other/data/security/ftp/security-ftp-allow-account-suffix-data.yaml b/other/data/security/ftp/security-ftp-allow-account-suffix-data.yaml
new file mode 100644
index 0000000..239f5fa
--- /dev/null
+++ b/other/data/security/ftp/security-ftp-allow-account-suffix-data.yaml
@@ -0,0 +1,41 @@
+#注意keywordArray下的关键字必须为数组形式
+"allow-account-suffix_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-ftp-allow-account-suffix-0001"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "isGre": 0
+ "action": "allow"
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 1
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "ftp"
+ "appIdObjects":
+ - "ftp"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "ftpUrl": "/autoFtp/english.txt"
+ "hopeResult": "autotest"
+ "hopeSuccessNumber": 1
+ "logQueryParam":
+ -
+ "queryFiledKey": "ftp_account"
+ "queryValue": "ftpuser"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_FTP_ACCOUNT"
+ "objectType": "account"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "*puser" \ No newline at end of file
diff --git a/other/data/security/ftp/security-ftp-allow-content-exactly-data.yaml b/other/data/security/ftp/security-ftp-allow-content-exactly-data.yaml
new file mode 100644
index 0000000..d2c8db5
--- /dev/null
+++ b/other/data/security/ftp/security-ftp-allow-content-exactly-data.yaml
@@ -0,0 +1,41 @@
+#注意keywordArray下的关键字必须为数组形式
+"allow-content-exactly_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-ftp-allow-content-exactly-0001"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "isGre": 0
+ "action": "allow"
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 1
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "ftp"
+ "appIdObjects":
+ - "ftp"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "ftpUrl": "/autoFtp/english.txt"
+ "hopeResult": "autotest"
+ "hopeSuccessNumber": 1
+ "logQueryParam":
+ -
+ "queryFiledKey": "ftp_account"
+ "queryValue": "ftpuser"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_FTP_CONTENT"
+ "objectType": "keywords"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "$autotest" \ No newline at end of file
diff --git a/other/data/security/ftp/security-ftp-allow-content-prefix-data.yaml b/other/data/security/ftp/security-ftp-allow-content-prefix-data.yaml
new file mode 100644
index 0000000..226fbda
--- /dev/null
+++ b/other/data/security/ftp/security-ftp-allow-content-prefix-data.yaml
@@ -0,0 +1,41 @@
+#注意keywordArray下的关键字必须为数组形式
+"allow-content-prefix_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-ftp-allow-content-prefix-0001"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "isGre": 0
+ "action": "allow"
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 1
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "ftp"
+ "appIdObjects":
+ - "ftp"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "ftpUrl": "/autoFtp/english.txt"
+ "hopeResult": "autotest"
+ "hopeSuccessNumber": 1
+ "logQueryParam":
+ -
+ "queryFiledKey": "ftp_account"
+ "queryValue": "ftpuser"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_FTP_CONTENT"
+ "objectType": "keywords"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "autote*" \ No newline at end of file
diff --git a/other/data/security/ftp/security-ftp-allow-content-substring-data.yaml b/other/data/security/ftp/security-ftp-allow-content-substring-data.yaml
new file mode 100644
index 0000000..f7ac940
--- /dev/null
+++ b/other/data/security/ftp/security-ftp-allow-content-substring-data.yaml
@@ -0,0 +1,41 @@
+#注意keywordArray下的关键字必须为数组形式
+"allow-content-substring_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-ftp-allow-content-substring-0001"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "isGre": 0
+ "action": "allow"
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 1
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "ftp"
+ "appIdObjects":
+ - "ftp"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "ftpUrl": "/autoFtp/english.txt"
+ "hopeResult": "autotest"
+ "hopeSuccessNumber": 1
+ "logQueryParam":
+ -
+ "queryFiledKey": "ftp_account"
+ "queryValue": "ftpuser"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_FTP_CONTENT"
+ "objectType": "keywords"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "autotest" \ No newline at end of file
diff --git a/other/data/security/ftp/security-ftp-allow-content-suffix-data.yaml b/other/data/security/ftp/security-ftp-allow-content-suffix-data.yaml
new file mode 100644
index 0000000..b1bbf6a
--- /dev/null
+++ b/other/data/security/ftp/security-ftp-allow-content-suffix-data.yaml
@@ -0,0 +1,41 @@
+#注意keywordArray下的关键字必须为数组形式
+"allow-content-suffix_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-ftp-allow-content-suffix-0001"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "isGre": 0
+ "action": "allow"
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 1
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "ftp"
+ "appIdObjects":
+ - "ftp"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "ftpUrl": "/autoFtp/english.txt"
+ "hopeResult": "autotest"
+ "hopeSuccessNumber": 1
+ "logQueryParam":
+ -
+ "queryFiledKey": "ftp_account"
+ "queryValue": "ftpuser"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_FTP_CONTENT"
+ "objectType": "keywords"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "*test" \ No newline at end of file
diff --git a/other/data/security/ftp/security-ftp-allow-only-ipAndApplication-data.yaml b/other/data/security/ftp/security-ftp-allow-only-ipAndApplication-data.yaml
index 2b4b665..0e16387 100644
--- a/other/data/security/ftp/security-ftp-allow-only-ipAndApplication-data.yaml
+++ b/other/data/security/ftp/security-ftp-allow-only-ipAndApplication-data.yaml
@@ -40,3 +40,43 @@
-
"ip": "1.1.1.1"
"port": "0-65535"
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-ftp-allow-only-IpAndApplication-0002"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "isGre": 0
+ "action": "allow"
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 0
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "ftp"
+ "appIdObjects":
+ - "ftp"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "ftpUrl": "/autoFtp/english.txt"
+ "hopeResult": "autotest"
+ "hopeSuccessNumber": 1
+ "logQueryParam":
+ -
+ "queryFiledKey": "common_schema_type"
+ "queryValue": "empty"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_SECURITY_SOURCE_ADDR"
+ "objectType": "ip"
+ "objectSubType": "endpoint"
+ "objectList":
+ - "addItemList":
+ -
+ "ip": "1.1.1.1"
+ "port": "0-65535" \ No newline at end of file
diff --git a/other/data/security/ftp/security-ftp-allow-uri-account-content-data.yaml b/other/data/security/ftp/security-ftp-allow-uri-account-content-data.yaml
new file mode 100644
index 0000000..11eb673
--- /dev/null
+++ b/other/data/security/ftp/security-ftp-allow-uri-account-content-data.yaml
@@ -0,0 +1,57 @@
+#注意keywordArray下的关键字必须为数组形式
+"allow-uri-account-content_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-ftp-allow-uri-account-content-0001"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "isGre": 0
+ "action": "allow"
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 1
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "ftp"
+ "appIdObjects":
+ - "ftp"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "ftpUrl": "/autoFtp/english.txt"
+ "hopeResult": "autotest"
+ "hopeSuccessNumber": 1
+ "logQueryParam":
+ -
+ "queryFiledKey": "ftp_account"
+ "queryValue": "ftpuser"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_FTP_URI"
+ "objectType": "url"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "$ftp://192.168.40.206/autoFtp/english.txt"
+ -
+ "protocolField": "TSG_FIELD_FTP_ACCOUNT"
+ "objectType": "account"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "puse"
+ -
+ "protocolField": "TSG_FIELD_FTP_CONTENT"
+ "objectType": "keywords"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "autotest" \ No newline at end of file
diff --git a/other/data/security/ftp/security-ftp-allow-uri-account-data.yaml b/other/data/security/ftp/security-ftp-allow-uri-account-data.yaml
new file mode 100644
index 0000000..620d54c
--- /dev/null
+++ b/other/data/security/ftp/security-ftp-allow-uri-account-data.yaml
@@ -0,0 +1,49 @@
+#注意keywordArray下的关键字必须为数组形式
+"allow-uri-account_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-ftp-allow-uri-account-0001"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "isGre": 0
+ "action": "allow"
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 1
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "ftp"
+ "appIdObjects":
+ - "ftp"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "ftpUrl": "/autoFtp/english.txt"
+ "hopeResult": "autotest"
+ "hopeSuccessNumber": 1
+ "logQueryParam":
+ -
+ "queryFiledKey": "ftp_account"
+ "queryValue": "ftpuser"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_FTP_URI"
+ "objectType": "url"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "://192.168.40.206/autoFtp"
+ -
+ "protocolField": "TSG_FIELD_FTP_ACCOUNT"
+ "objectType": "account"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "ftpus*" \ No newline at end of file
diff --git a/other/data/security/ftp/security-ftp-allow-uri-content-data.yaml b/other/data/security/ftp/security-ftp-allow-uri-content-data.yaml
new file mode 100644
index 0000000..b52b811
--- /dev/null
+++ b/other/data/security/ftp/security-ftp-allow-uri-content-data.yaml
@@ -0,0 +1,49 @@
+#注意keywordArray下的关键字必须为数组形式
+"allow-uri-content_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-ftp-allow-uri-content-0001"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "isGre": 0
+ "action": "allow"
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 1
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "ftp"
+ "appIdObjects":
+ - "ftp"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "ftpUrl": "/autoFtp/english.txt"
+ "hopeResult": "autotest"
+ "hopeSuccessNumber": 1
+ "logQueryParam":
+ -
+ "queryFiledKey": "ftp_account"
+ "queryValue": "ftpuser"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_FTP_URI"
+ "objectType": "url"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "ftp://192.168.*"
+ -
+ "protocolField": "TSG_FIELD_FTP_CONTENT"
+ "objectType": "keywords"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "$autotest" \ No newline at end of file
diff --git a/other/data/security/ftp/security-ftp-allow-uri-exactly-data.yaml b/other/data/security/ftp/security-ftp-allow-uri-exactly-data.yaml
new file mode 100644
index 0000000..6b595f6
--- /dev/null
+++ b/other/data/security/ftp/security-ftp-allow-uri-exactly-data.yaml
@@ -0,0 +1,41 @@
+#注意keywordArray下的关键字必须为数组形式
+"allow-uri-exactly_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-ftp-allow-uri-exactly-0001"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "isGre": 0
+ "action": "allow"
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 1
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "ftp"
+ "appIdObjects":
+ - "ftp"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "ftpUrl": "/autoFtp/english.txt"
+ "hopeResult": "autotest"
+ "hopeSuccessNumber": 1
+ "logQueryParam":
+ -
+ "queryFiledKey": "ftp_account"
+ "queryValue": "ftpuser"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_FTP_URI"
+ "objectType": "url"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "$ftp://192.168.40.206/autoFtp/english.txt" \ No newline at end of file
diff --git a/other/data/security/ftp/security-ftp-allow-uri-prefix-data.yaml b/other/data/security/ftp/security-ftp-allow-uri-prefix-data.yaml
new file mode 100644
index 0000000..5bf0165
--- /dev/null
+++ b/other/data/security/ftp/security-ftp-allow-uri-prefix-data.yaml
@@ -0,0 +1,41 @@
+#注意keywordArray下的关键字必须为数组形式
+"allow-uri-prefix_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-ftp-allow-uri-prefix-0001"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "isGre": 0
+ "action": "allow"
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 1
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "ftp"
+ "appIdObjects":
+ - "ftp"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "ftpUrl": "/autoFtp/english.txt"
+ "hopeResult": "autotest"
+ "hopeSuccessNumber": 1
+ "logQueryParam":
+ -
+ "queryFiledKey": "ftp_account"
+ "queryValue": "ftpuser"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_FTP_URI"
+ "objectType": "url"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "ftp://192.168.40.206*" \ No newline at end of file
diff --git a/other/data/security/ftp/security-ftp-allow-uri-substring-data.yaml b/other/data/security/ftp/security-ftp-allow-uri-substring-data.yaml
new file mode 100644
index 0000000..c19299b
--- /dev/null
+++ b/other/data/security/ftp/security-ftp-allow-uri-substring-data.yaml
@@ -0,0 +1,41 @@
+#注意keywordArray下的关键字必须为数组形式
+"allow-uri-substring_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-ftp-allow-uri-substring-0001"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "isGre": 0
+ "action": "allow"
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 1
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "ftp"
+ "appIdObjects":
+ - "ftp"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "ftpUrl": "/autoFtp/english.txt"
+ "hopeResult": "autotest"
+ "hopeSuccessNumber": 1
+ "logQueryParam":
+ -
+ "queryFiledKey": "ftp_account"
+ "queryValue": "ftpuser"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_FTP_URI"
+ "objectType": "url"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "ftp://192.168.40.206" \ No newline at end of file
diff --git a/other/data/security/ftp/security-ftp-allow-uri-suffix-data.yaml b/other/data/security/ftp/security-ftp-allow-uri-suffix-data.yaml
new file mode 100644
index 0000000..8cd0f9a
--- /dev/null
+++ b/other/data/security/ftp/security-ftp-allow-uri-suffix-data.yaml
@@ -0,0 +1,41 @@
+#注意keywordArray下的关键字必须为数组形式
+"allow-uri-suffix_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-ftp-allow-uri-suffix-0001"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "isGre": 0
+ "action": "allow"
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 1
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "ftp"
+ "appIdObjects":
+ - "ftp"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "ftpUrl": "/autoFtp/english.txt"
+ "hopeResult": "autotest"
+ "hopeSuccessNumber": 1
+ "logQueryParam":
+ -
+ "queryFiledKey": "ftp_account"
+ "queryValue": "ftpuser"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_FTP_URI"
+ "objectType": "url"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "*autoFtp/english.txt" \ No newline at end of file
diff --git a/other/data/security/ftp/security-ftp-deny-account-exactly-data.yaml b/other/data/security/ftp/security-ftp-deny-account-exactly-data.yaml
index 266c18c..dddbc6d 100644
--- a/other/data/security/ftp/security-ftp-deny-account-exactly-data.yaml
+++ b/other/data/security/ftp/security-ftp-deny-account-exactly-data.yaml
@@ -1,9 +1,9 @@
#注意keywordArray下的关键字必须为数组形式
-"deny-account-exactly_data":
+"deny-reset-update-rateLittle-account-exactly_data":
-
"opAction": "add"
"returnData": 1
- "policyName": "security-ftp-deny-account-exactly-0001"
+ "policyName": "security-ftp-deny-reset-update-rateLittle-account-exactly"
"policyType": "tsg_security"
"logType": "security_event"
"isGre": 0
@@ -81,11 +81,12 @@
"objectList":
- "addItemList":
- "keywordArray":
- - "$ftpuser"
+ - "$ftpuser"
+"deny-rateBig-account-exactly_data":
-
"opAction": "add"
"returnData": 1
- "policyName": "security-ftp-deny-account-exactly-0002"
+ "policyName": "security-ftp-deny-rateBig-account-exactly"
"policyType": "tsg_security"
"logType": "security_event"
"isGre": 0
@@ -122,11 +123,12 @@
"objectList":
- "addItemList":
- "keywordArray":
- - "$ftpuser"
+ - "$ftpuser"
+"deny-tamper-account-exactly_data":
-
"opAction": "add"
"returnData": 1
- "policyName": "security-ftp-deny-account-exactly-0003"
+ "policyName": "security-ftp-deny-tamper-account-exactly"
"policyType": "tsg_security"
"logType": "security_event"
"isGre": 0
diff --git a/other/data/security/ftp/security-ftp-deny-account-prefix-data.yaml b/other/data/security/ftp/security-ftp-deny-account-prefix-data.yaml
index 689f46e..701592d 100644
--- a/other/data/security/ftp/security-ftp-deny-account-prefix-data.yaml
+++ b/other/data/security/ftp/security-ftp-deny-account-prefix-data.yaml
@@ -1,9 +1,9 @@
#注意keywordArray下的关键字必须为数组形式
-"deny-account-prefix_data":
+"deny-reset-update-rateLittle-account-prefix_data":
-
"opAction": "add"
"returnData": 1
- "policyName": "security-ftp-deny-account-prefix-0001"
+ "policyName": "security-ftp-deny-reset-account-prefix"
"policyType": "tsg_security"
"logType": "security_event"
"isGre": 0
@@ -43,7 +43,7 @@
-
"opAction": "update"
"returnData": 1
- "policyName": "security-ftp-deny-account-prefix-0001-1"
+ "policyName": "security-ftp-deny-rateLittle-account-prefix"
"policyType": "tsg_security"
"logType": "security_event"
"isGre": 0
@@ -81,11 +81,54 @@
"objectList":
- "addItemList":
- "keywordArray":
- - "ftp*"
+ - "ftp*"
+"deny-rateLittle-account-prefix_data":
-
"opAction": "add"
"returnData": 1
- "policyName": "security-ftp-deny-account-prefix-0002"
+ "policyName": "security-ftp-deny-rateLittle-account-prefix"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "isGre": 0
+ "action": "deny"
+ "method": "rate_limit"
+ "bps": 10
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 1
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "ftp"
+ "appIdObjects":
+ - "ftp"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "ftpUrl": "/autoFtp/english_big.txt"
+ "hopeResult": "timed out"
+ "hopeSuccessNumber": 1
+ "logQueryParam":
+ -
+ "queryFiledKey": "ftp_account"
+ "queryValue": "ftpuser"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_FTP_ACCOUNT"
+ "objectType": "account"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "ftp*"
+"deny-rateBig-account-prefix_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-ftp-deny-rateBig-account-prefix"
"policyType": "tsg_security"
"logType": "security_event"
"isGre": 0
@@ -122,11 +165,12 @@
"objectList":
- "addItemList":
- "keywordArray":
- - "ftp*"
+ - "ftp*"
+"deny-tamper-account-prefix_data":
-
"opAction": "add"
"returnData": 1
- "policyName": "security-ftp-deny-account-prefix-0003"
+ "policyName": "security-ftp-deny-tamper-account-prefix"
"policyType": "tsg_security"
"logType": "security_event"
"isGre": 0
diff --git a/other/data/security/ftp/security-ftp-deny-account-substring-data.yaml b/other/data/security/ftp/security-ftp-deny-account-substring-data.yaml
index 805b8f1..7d6c44c 100644
--- a/other/data/security/ftp/security-ftp-deny-account-substring-data.yaml
+++ b/other/data/security/ftp/security-ftp-deny-account-substring-data.yaml
@@ -1,9 +1,9 @@
#注意keywordArray下的关键字必须为数组形式
-"deny-account-substring_data":
+"deny-reset-account-substring_data":
-
"opAction": "add"
"returnData": 1
- "policyName": "security-ftp-deny-account-exactly-0001"
+ "policyName": "security-ftp-deny-reset-account-exactly"
"policyType": "tsg_security"
"logType": "security_event"
"isGre": 0
@@ -39,11 +39,12 @@
"objectList":
- "addItemList":
- "keywordArray":
- - "ftpus"
+ - "ftpus"
+"deny-tamper-account-substring_data":
-
"opAction": "add"
"returnData": 1
- "policyName": "security-ftp-deny-account-exactly-0003"
+ "policyName": "security-ftp-deny-tamper-account-exactly"
"policyType": "tsg_security"
"logType": "security_event"
"isGre": 0
diff --git a/other/data/security/ftp/security-ftp-deny-account-suffix-data.yaml b/other/data/security/ftp/security-ftp-deny-account-suffix-data.yaml
index 826b6c9..ad31ed3 100644
--- a/other/data/security/ftp/security-ftp-deny-account-suffix-data.yaml
+++ b/other/data/security/ftp/security-ftp-deny-account-suffix-data.yaml
@@ -1,9 +1,9 @@
#注意keywordArray下的关键字必须为数组形式
-"deny-account-suffix_data":
+"deny-reset-account-suffix_data":
-
"opAction": "add"
"returnData": 1
- "policyName": "security-ftp-deny-account-exactly-0001"
+ "policyName": "security-ftp-deny-reset-account-exactly"
"policyType": "tsg_security"
"logType": "security_event"
"isGre": 0
diff --git a/other/data/security/ftp/security-ftp-deny-content-exactly-data.yaml b/other/data/security/ftp/security-ftp-deny-content-exactly-data.yaml
index 63a13d6..493f380 100644
--- a/other/data/security/ftp/security-ftp-deny-content-exactly-data.yaml
+++ b/other/data/security/ftp/security-ftp-deny-content-exactly-data.yaml
@@ -1,9 +1,9 @@
#注意keywordArray下的关键字必须为数组形式
-"deny-content-exactly_data":
+"deny-reset-content-exactly_data":
-
"opAction": "add"
"returnData": 1
- "policyName": "security-ftp-deny-content-exactly-0001"
+ "policyName": "security-ftp-deny-reset-content-exactly"
"policyType": "tsg_security"
"logType": "security_event"
"isGre": 0
@@ -39,11 +39,12 @@
"objectList":
- "addItemList":
- "keywordArray":
- - "$autotest"
+ - "$autotest"
+"deny-rateBig-content-exactly_data":
-
"opAction": "add"
"returnData": 1
- "policyName": "security-ftp-deny-content-exactly-0002"
+ "policyName": "security-ftp-deny-rateBig-content-exactly"
"policyType": "tsg_security"
"logType": "security_event"
"isGre": 0
@@ -80,11 +81,12 @@
"objectList":
- "addItemList":
- "keywordArray":
- - "$autotest"
+ - "$autotest"
+"deny-tamper-content-exactly_data":
-
"opAction": "add"
"returnData": 1
- "policyName": "security-ftp-deny-content-exactly-0003"
+ "policyName": "security-ftp-deny-tamper-content-exactly"
"policyType": "tsg_security"
"logType": "security_event"
"isGre": 0
diff --git a/other/data/security/ftp/security-ftp-deny-content-prefix-data.yaml b/other/data/security/ftp/security-ftp-deny-content-prefix-data.yaml
index d9aafd1..c3e3008 100644
--- a/other/data/security/ftp/security-ftp-deny-content-prefix-data.yaml
+++ b/other/data/security/ftp/security-ftp-deny-content-prefix-data.yaml
@@ -1,9 +1,9 @@
#注意keywordArray下的关键字必须为数组形式
-"deny-content-prefix_data":
+"deny-reset-content-prefix_data":
-
"opAction": "add"
"returnData": 1
- "policyName": "security-ftp-deny-content-prefix-0001"
+ "policyName": "security-ftp-deny-reset-content-prefix"
"policyType": "tsg_security"
"logType": "security_event"
"isGre": 0
@@ -40,10 +40,11 @@
- "addItemList":
- "keywordArray":
- "autot*"
+"deny-tamper-content-prefix_data":
-
"opAction": "add"
"returnData": 1
- "policyName": "security-ftp-deny-content-prefix-0003"
+ "policyName": "security-ftp-deny-tamper-content-prefix"
"policyType": "tsg_security"
"logType": "security_event"
"isGre": 0
diff --git a/other/data/security/ftp/security-ftp-deny-content-substring-data.yaml b/other/data/security/ftp/security-ftp-deny-content-substring-data.yaml
index 3fc6f98..d1f89f0 100644
--- a/other/data/security/ftp/security-ftp-deny-content-substring-data.yaml
+++ b/other/data/security/ftp/security-ftp-deny-content-substring-data.yaml
@@ -1,9 +1,9 @@
#注意keywordArray下的关键字必须为数组形式
-"deny-content-substring_data":
+"deny-reset-content-substring_data":
-
"opAction": "add"
"returnData": 1
- "policyName": "security-ftp-deny-content-substring-0001"
+ "policyName": "security-ftp-deny-reset-content-substring"
"policyType": "tsg_security"
"logType": "security_event"
"isGre": 0
@@ -39,11 +39,12 @@
"objectList":
- "addItemList":
- "keywordArray":
- - "autot"
+ - "autot"
+"deny-tamper-content-substring_data":
-
"opAction": "add"
"returnData": 1
- "policyName": "security-ftp-deny-content-substring-0003"
+ "policyName": "security-ftp-deny-tamper-content-substring"
"policyType": "tsg_security"
"logType": "security_event"
"isGre": 0
diff --git a/other/data/security/ftp/security-ftp-deny-content-suffix-data.yaml b/other/data/security/ftp/security-ftp-deny-content-suffix-data.yaml
index 3684a1e..025460d 100644
--- a/other/data/security/ftp/security-ftp-deny-content-suffix-data.yaml
+++ b/other/data/security/ftp/security-ftp-deny-content-suffix-data.yaml
@@ -1,9 +1,9 @@
#注意keywordArray下的关键字必须为数组形式
-"deny-content-suffix_data":
+"deny-reset-content-suffix_data":
-
"opAction": "add"
"returnData": 1
- "policyName": "security-ftp-deny-content-substring-0001"
+ "policyName": "security-ftp-deny-reset-content-substring"
"policyType": "tsg_security"
"logType": "security_event"
"isGre": 0
@@ -39,11 +39,12 @@
"objectList":
- "addItemList":
- "keywordArray":
- - "*otest"
+ - "*otest"
+"deny-rateBig-content-suffix_data":
-
"opAction": "add"
"returnData": 1
- "policyName": "security-ftp-deny-content-substring-0002"
+ "policyName": "security-ftp-deny-rateBig-content-substring"
"policyType": "tsg_security"
"logType": "security_event"
"isGre": 0
@@ -80,11 +81,12 @@
"objectList":
- "addItemList":
- "keywordArray":
- - "*otest"
+ - "*otest"
+"deny-tamper-content-suffix_data":
-
"opAction": "add"
"returnData": 1
- "policyName": "security-ftp-deny-content-substring-0003"
+ "policyName": "security-ftp-deny-tamper-content-substring"
"policyType": "tsg_security"
"logType": "security_event"
"isGre": 0
@@ -120,4 +122,45 @@
"objectList":
- "addItemList":
- "keywordArray":
- - "*otest"
+ - "*otest"
+"deny-reset-noLog-content-suffix_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-ftp-deny-reset-noLog-content-substring"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "isGre": 0
+ "action": "deny"
+ "method": "reset"
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 0
+ "policyDesc": "*otestest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "ftp"
+ "appIdObjects":
+ - "ftp"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "ftpUrl": "/autoFtp/english.txt"
+ "hopeResult": "timed out"
+ "hopeSuccessNumber": 1
+ "logQueryParam":
+ -
+ "queryFiledKey": "ftp_account"
+ "queryValue": "empty"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_FTP_CONTENT"
+ "objectType": "keywords"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "*otest" \ No newline at end of file
diff --git a/other/data/security/ftp/security-ftp-deny-only-IpAndApplication-data.yaml b/other/data/security/ftp/security-ftp-deny-only-IpAndApplication-data.yaml
index c28043e..eefddfc 100644
--- a/other/data/security/ftp/security-ftp-deny-only-IpAndApplication-data.yaml
+++ b/other/data/security/ftp/security-ftp-deny-only-IpAndApplication-data.yaml
@@ -1,9 +1,9 @@
#注意keywordArray下的关键字必须为数组形式
-"deny-only-IpAndApplication_data":
+"deny-reset-only-IpAndApplication_data":
-
"opAction": "add"
"returnData": 1
- "policyName": "security-ftp-deny-only-IpAndApplication-0001"
+ "policyName": "security-ftp-deny-reset-only-IpAndApplication"
"policyType": "tsg_security"
"logType": "security_event"
"isGre": 0
@@ -41,14 +41,14 @@
-
"ip": "1.1.1.1"
"port": "0-65535"
+"deny-rateLittle-only-IpAndApplication_data":
-
- "opAction": "update"
+ "opAction": "add"
"returnData": 1
- "policyName": "security-mail-deny-only-IpAndApplication-0001-1"
+ "policyName": "security-mail-deny-rateLittle-only-IpAndApplication"
"policyType": "tsg_security"
"logType": "security_event"
"isGre": 0
- "isEdit": 1
"action": "deny"
"method": "rate_limit"
"bps": 10
@@ -84,10 +84,11 @@
-
"ip": "1.1.1.1"
"port": "0-65535"
+"deny-rateBig-only-IpAndApplication_data":
-
"opAction": "add"
"returnData": 1
- "policyName": "security-ftp-deny-only-IpAndApplication-0002"
+ "policyName": "security-ftp-deny-rateBig-only-IpAndApplication"
"policyType": "tsg_security"
"logType": "security_event"
"isGre": 0
@@ -126,10 +127,11 @@
-
"ip": "1.1.1.1"
"port": "0-65535"
+"deny-tamper-only-IpAndApplication_data":
-
"opAction": "add"
"returnData": 1
- "policyName": "security-ftp-deny-only-IpAndApplication-0003"
+ "policyName": "security-ftp-deny-tamper-only-IpAndApplication"
"policyType": "tsg_security"
"logType": "security_event"
"isGre": 0
diff --git a/other/data/security/ftp/security-ftp-deny-uri-exactly-data.yaml b/other/data/security/ftp/security-ftp-deny-uri-exactly-data.yaml
index 8cfeb77..ef72d3f 100644
--- a/other/data/security/ftp/security-ftp-deny-uri-exactly-data.yaml
+++ b/other/data/security/ftp/security-ftp-deny-uri-exactly-data.yaml
@@ -1,9 +1,9 @@
#注意keywordArray下的关键字必须为数组形式
-"deny-uri-exactly_data":
+"deny-reset-uri-exactly_data":
-
"opAction": "add"
"returnData": 1
- "policyName": "security-ftp-deny-uri-exactly-0001"
+ "policyName": "security-ftp-deny-reset-uri-exactly"
"policyType": "tsg_security"
"logType": "security_event"
"isGre": 0
@@ -39,15 +39,15 @@
"objectList":
- "addItemList":
- "keywordArray":
- - "$ftp://192.168.40.206/autoFtp/english.txt"
+ - "$ftp://192.168.40.206/autoFtp/english.txt"
+"deny-rateLittle-uri-exactly_data":
-
- "opAction": "update"
+ "opAction": "add"
"returnData": 1
- "policyName": "security-mail-deny-uri-exactly-0001-1"
+ "policyName": "security-mail-deny-rateLittle-uri-exactly"
"policyType": "tsg_security"
"logType": "security_event"
"isGre": 0
- "isEdit": 1
"action": "deny"
"method": "rate_limit"
"bps": 10
@@ -81,11 +81,12 @@
"objectList":
- "addItemList":
- "keywordArray":
- - "$ftp://192.168.40.206/autoFtp/english_big.txt"
+ - "$ftp://192.168.40.206/autoFtp/english_big.txt"
+"deny-rateBig-uri-exactly_data":
-
"opAction": "add"
"returnData": 1
- "policyName": "security-ftp-deny-uri-exactly-0002"
+ "policyName": "security-ftp-deny-rateBig-uri-exactly"
"policyType": "tsg_security"
"logType": "security_event"
"isGre": 0
@@ -122,11 +123,12 @@
"objectList":
- "addItemList":
- "keywordArray":
- - "$ftp://192.168.40.206/autoFtp/english.txt"
+ - "$ftp://192.168.40.206/autoFtp/english.txt"
+"deny-tamper-uri-exactly_data":
-
"opAction": "add"
"returnData": 1
- "policyName": "security-ftp-deny-uri-exactly-0003"
+ "policyName": "security-ftp-deny-tamper-uri-exactly"
"policyType": "tsg_security"
"logType": "security_event"
"isGre": 0
diff --git a/other/data/security/ftp/security-ftp-deny-uri-prefix-data.yaml b/other/data/security/ftp/security-ftp-deny-uri-prefix-data.yaml
index 5416094..00448b0 100644
--- a/other/data/security/ftp/security-ftp-deny-uri-prefix-data.yaml
+++ b/other/data/security/ftp/security-ftp-deny-uri-prefix-data.yaml
@@ -1,9 +1,9 @@
#注意keywordArray下的关键字必须为数组形式
-"deny-uri-prefix_data":
+"deny-reset-update-rateLittle-uri-prefix_data":
-
"opAction": "add"
"returnData": 1
- "policyName": "security-ftp-deny-uri-prefix-0001"
+ "policyName": "security-ftp-deny-reset-update-rateLittle-uri-prefix"
"policyType": "tsg_security"
"logType": "security_event"
"isGre": 0
@@ -40,11 +40,10 @@
- "addItemList":
- "keywordArray":
- "ftp://192.168.*"
-
-
"opAction": "update"
"returnData": 1
- "policyName": "security-mail-deny-uri-prefix-0001-1"
+ "policyName": "security-mail-deny-rateLittle-uri-prefix"
"policyType": "tsg_security"
"logType": "security_event"
"isGre": 0
@@ -82,11 +81,54 @@
"objectList":
- "addItemList":
- "keywordArray":
- - "ftp://192.168.40*"
+ - "ftp://192.168.40*"
+"deny-rateLittle-uri-prefix_data":
-
"opAction": "add"
"returnData": 1
- "policyName": "security-ftp-deny-uri-prefix-0002"
+ "policyName": "security-mail-deny-rateLittle-uri-prefix"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "isGre": 0
+ "action": "deny"
+ "method": "rate_limit"
+ "bps": 10
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 1
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "ftp"
+ "appIdObjects":
+ - "ftp"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "ftpUrl": "/autoFtp/english_big.txt"
+ "hopeResult": "timed out"
+ "hopeSuccessNumber": 1
+ "logQueryParam":
+ -
+ "queryFiledKey": "ftp_account"
+ "queryValue": "ftpuser"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_FTP_URI"
+ "objectType": "url"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "ftp://192.168.40*"
+"deny-rateBig-uri-prefix_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-ftp-deny-rateBig-uri-prefix"
"policyType": "tsg_security"
"logType": "security_event"
"isGre": 0
@@ -123,11 +165,12 @@
"objectList":
- "addItemList":
- "keywordArray":
- - "ftp://192.168.40*"
+ - "ftp://192.168.40*"
+"deny-tamper-uri-prefix_data":
-
"opAction": "add"
"returnData": 1
- "policyName": "security-ftp-deny-uri-prefix-0003"
+ "policyName": "security-ftp-deny-tamper-uri-prefix"
"policyType": "tsg_security"
"logType": "security_event"
"isGre": 0
@@ -163,4 +206,45 @@
"objectList":
- "addItemList":
- "keywordArray":
- - "ftp://192.168.40*"
+ - "ftp://192.168.40*"
+"deny-reset-noLog-uri-prefix_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-ftp-deny-reset-noLog-uri-prefix"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "isGre": 0
+ "action": "deny"
+ "method": "reset"
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 0
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "ftp"
+ "appIdObjects":
+ - "ftp"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "ftpUrl": "/autoFtp/english.txt"
+ "hopeResult": "timed out"
+ "hopeSuccessNumber": 1
+ "logQueryParam":
+ -
+ "queryFiledKey": "ftp_account"
+ "queryValue": "empty"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_FTP_URI"
+ "objectType": "url"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "ftp://192.168.*" \ No newline at end of file
diff --git a/other/data/security/ftp/security-ftp-deny-uri-substring-data.yaml b/other/data/security/ftp/security-ftp-deny-uri-substring-data.yaml
index 000e52e..d3e1693 100644
--- a/other/data/security/ftp/security-ftp-deny-uri-substring-data.yaml
+++ b/other/data/security/ftp/security-ftp-deny-uri-substring-data.yaml
@@ -1,9 +1,9 @@
#注意keywordArray下的关键字必须为数组形式
-"deny-uri-substring_data":
+"deny-reset-update-rateLittle-uri-substring_data":
-
"opAction": "add"
"returnData": 1
- "policyName": "security-ftp-deny-uri-substring-0001"
+ "policyName": "security-ftp-deny-reset-uri-substring"
"policyType": "tsg_security"
"logType": "security_event"
"isGre": 0
@@ -43,7 +43,7 @@
-
"opAction": "update"
"returnData": 1
- "policyName": "security-mail-deny-uri-substring-0001-1"
+ "policyName": "security-mail-deny-rateLittle-uri-substring"
"policyType": "tsg_security"
"logType": "security_event"
"isGre": 0
@@ -81,11 +81,54 @@
"objectList":
- "addItemList":
- "keywordArray":
- - "autoFtp"
+ - "autoFtp"
+"deny-rateLittle-uri-substring_data":
-
"opAction": "add"
"returnData": 1
- "policyName": "security-ftp-deny-uri-substring-0002"
+ "policyName": "security-mail-deny-rateLittle-uri-substring"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "isGre": 0
+ "action": "deny"
+ "method": "rate_limit"
+ "bps": 10
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 1
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "ftp"
+ "appIdObjects":
+ - "ftp"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "ftpUrl": "/autoFtp/english_big.txt"
+ "hopeResult": "timed out"
+ "hopeSuccessNumber": 1
+ "logQueryParam":
+ -
+ "queryFiledKey": "ftp_account"
+ "queryValue": "ftpuser"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_FTP_URI"
+ "objectType": "url"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "autoFtp"
+"deny-rateBig-uri-substring_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-ftp-deny-rateBig-uri-substring"
"policyType": "tsg_security"
"logType": "security_event"
"isGre": 0
@@ -122,11 +165,12 @@
"objectList":
- "addItemList":
- "keywordArray":
- - "autoFtp"
+ - "autoFtp"
+"deny-tamper-uri-substring_data":
-
"opAction": "add"
"returnData": 1
- "policyName": "security-ftp-deny-uri-substring-0003"
+ "policyName": "security-ftp-deny-tamper-uri-substring"
"policyType": "tsg_security"
"logType": "security_event"
"isGre": 0
diff --git a/other/data/security/ftp/security-ftp-deny-uri-suffix-data.yaml b/other/data/security/ftp/security-ftp-deny-uri-suffix-data.yaml
index 0aa96c6..b2aaa5c 100644
--- a/other/data/security/ftp/security-ftp-deny-uri-suffix-data.yaml
+++ b/other/data/security/ftp/security-ftp-deny-uri-suffix-data.yaml
@@ -1,9 +1,9 @@
#注意keywordArray下的关键字必须为数组形式
-"deny-uri-suffix_data":
+"deny-reset-uri-suffix_data":
-
"opAction": "add"
"returnData": 1
- "policyName": "security-ftp-deny-uri-suffix-0001"
+ "policyName": "security-ftp-deny-reset-uri-suffix"
"policyType": "tsg_security"
"logType": "security_event"
"isGre": 0
@@ -11,7 +11,7 @@
"method": "reset"
"userTags": ""
"doBlacklist": 0
- "doLog": 1
+ "doLog": 0
"policyDesc": "autotest"
"effectiveRange":
"userRegion":
@@ -28,7 +28,7 @@
"logQueryParam":
-
"queryFiledKey": "ftp_account"
- "queryValue": "ftpuser"
+ "queryValue": "empty"
"isValid": 1
"scheduleId":
"condation":
@@ -39,44 +39,4 @@
"objectList":
- "addItemList":
- "keywordArray":
- - "*english.txt"
- -
- "opAction": "add"
- "returnData": 1
- "policyName": "security-ftp-deny-uri-suffix-0003"
- "policyType": "tsg_security"
- "logType": "security_event"
- "isGre": 0
- "action": "deny"
- "method": "tamper"
- "userTags": ""
- "doBlacklist": 0
- "doLog": 1
- "policyDesc": "autotest"
- "effectiveRange":
- "userRegion":
- "protocol": "ftp"
- "appIdObjects":
- - "ftp"
- "appSelectorObjects":
- "isTestMachine": 1
- "testMachine":
- -
- "ftpUrl": "/autoFtp/english.txt"
- "hopeResult": "Connection reset by peer"
- "hopeSuccessNumber": 1
- "logQueryParam":
- -
- "queryFiledKey": "ftp_account"
- "queryValue": "ftpuser"
- "isValid": 1
- "scheduleId":
- "condation":
- -
- "protocolField": "TSG_FIELD_FTP_URI"
- "objectType": "url"
- "objectSubType": ""
- "objectList":
- - "addItemList":
- - "keywordArray":
- - "*english.txt"
+ - "*english.txt" \ No newline at end of file
diff --git a/other/data/security/ftp/security-ftp-monitor-account-exactly-data.yaml b/other/data/security/ftp/security-ftp-monitor-account-exactly-data.yaml
index 4669c98..5725669 100644
--- a/other/data/security/ftp/security-ftp-monitor-account-exactly-data.yaml
+++ b/other/data/security/ftp/security-ftp-monitor-account-exactly-data.yaml
@@ -41,3 +41,44 @@
- "addItemList":
- "keywordArray":
- "$ftpuser"
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-ftp-monitor-account-exactly-0002"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "isGre": 0
+ "action": "monitor"
+ "packet_mirror":
+ "enable": 0
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 0
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "ftp"
+ "appIdObjects":
+ - "ftp"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "ftpUrl": "/autoFtp/english.txt"
+ "hopeResult": "autotest"
+ "hopeSuccessNumber": 1
+ "logQueryParam":
+ -
+ "queryFiledKey": "ftp_account"
+ "queryValue": "empty"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_FTP_ACCOUNT"
+ "objectType": "account"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "$ftpuser" \ No newline at end of file
diff --git a/other/data/security/ftp/security-ftp-monitor-ftp-log-verify-data.yaml b/other/data/security/ftp/security-ftp-monitor-ftp-log-verify-data.yaml
index 314ca4c..6e891d7 100644
--- a/other/data/security/ftp/security-ftp-monitor-ftp-log-verify-data.yaml
+++ b/other/data/security/ftp/security-ftp-monitor-ftp-log-verify-data.yaml
@@ -68,3 +68,71 @@
- "addItemList":
- "keywordArray":
- "ftp://192.168.40.206"
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-ftp-monitor-ftp-log-verify-0002"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "isGre": 0
+ "action": "monitor"
+ "packet_mirror":
+ "enable": 0
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 0
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "ftp"
+ "appIdObjects":
+ - "ftp"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "logCapture": 1
+ "captureDepth": 4000
+ "testMachine":
+ -
+ "ftpUrl": "/autoFtp/english.txt"
+ "hopeResult": "autotest"
+ "hopeSuccessNumber": 1
+ "logQueryParam":
+ -
+ "queryFiledKey": "ftp_account"
+ "queryValue": "empty"
+ -
+ "queryFiledKey": "ftp_url"
+ "queryValue": "empty"
+ -
+ "queryFiledKey": "ftp_link_type"
+ "queryValue": "empty"
+ -
+ "queryFiledKey": "common_packet_capture_file"
+ "queryValue": "empty"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_FTP_ACCOUNT"
+ "objectType": "account"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "$ftpuser"
+ -
+ "protocolField": "TSG_FIELD_FTP_CONTENT"
+ "objectType": "keywords"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "autotest"
+ -
+ "protocolField": "TSG_FIELD_FTP_URI"
+ "objectType": "url"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "ftp://192.168.40.206" \ No newline at end of file
diff --git a/other/data/security/http/monitor_http_data.yaml b/other/data/security/http/monitor_http_data.yaml
index d95a10e..ebb558b 100644
--- a/other/data/security/http/monitor_http_data.yaml
+++ b/other/data/security/http/monitor_http_data.yaml
@@ -95,8 +95,6 @@
- "www.nuk-baby.ru*"
- "keywordArray":
- "davidsmithhunting.com"
- - "keywordArray":
- - "crosswordheaven"
-
"opAction": "add"
"returnData": 1
diff --git a/other/data/security/http/security-http-allow-fqdn-reqbody-data.yaml b/other/data/security/http/security-http-allow-fqdn-reqbody-data.yaml
new file mode 100644
index 0000000..5dbf7a6
--- /dev/null
+++ b/other/data/security/http/security-http-allow-fqdn-reqbody-data.yaml
@@ -0,0 +1,50 @@
+#注意keywordArray下的关键字必须为数组形式
+"allow-fqdn-reqbody_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-http-allow-fqdn-reqbody-001"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "action": "allow"
+ "isGre": 0
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 1
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "http"
+ "appIdObjects":
+ - "http"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "hopeSuccessNumber": 1
+ "command": 'curl --connect-timeout 5 -m 10 -H "Content-Type:application/json;charset=UTF-8" -X POST -d "{\"requestbody\":\"requestbodysubstring\",\"setcook\":\"asdf\",\"contenttype\": \"charset\",\"responsebody\": \"responsebodysubstring\"}" -kv --user-agent "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.70 Safari/537.36" http://open.node.com:180/go | iconv -f utf-8 -t gbk'
+ "commandRes": "requestbodysubstring"
+ "logQueryParam":
+ -
+ "queryFiledKey": "http_host"
+ "queryValue": "open.node.com"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_HTTP_HOST"
+ "objectType": "fqdn"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "$open.node.com"
+ -
+ "protocolField": "TSG_FIELD_HTTP_REQ_BODY"
+ "objectType": "keywords"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "requestbodysubstring"
+ \ No newline at end of file
diff --git a/other/data/security/http/security-http-allow-fqdn-reqheader-data.yaml b/other/data/security/http/security-http-allow-fqdn-reqheader-data.yaml
new file mode 100644
index 0000000..e895712
--- /dev/null
+++ b/other/data/security/http/security-http-allow-fqdn-reqheader-data.yaml
@@ -0,0 +1,50 @@
+#注意keywordArray下的关键字必须为数组形式
+"allow-fqdn-reqheader_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-http-allow-fqdn-reqheader-001"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "action": "allow"
+ "isGre": 0
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 1
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "http"
+ "appIdObjects":
+ - "http"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "hopeSuccessNumber": 1
+ "command": 'wget -q -O- --user-agent "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.70 Safari/537.36" http://www.cri.cn/'
+ "commandRes": "国际在线"
+ "logQueryParam":
+ -
+ "queryFiledKey": "http_host"
+ "queryValue": "www.cri.cn"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_HTTP_HOST"
+ "objectType": "fqdn"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "*cri.cn"
+ -
+ "protocolField": "TSG_FIELD_HTTP_REQ_HDR"
+ "objectType": "http_signature"
+ "objectSubType": "User-Agent"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "Mozilla/5.0*"
+ "district": "User-Agent" \ No newline at end of file
diff --git a/other/data/security/http/security-http-allow-fqdn-reqheader-reqbody-data.yaml b/other/data/security/http/security-http-allow-fqdn-reqheader-reqbody-data.yaml
new file mode 100644
index 0000000..815dd71
--- /dev/null
+++ b/other/data/security/http/security-http-allow-fqdn-reqheader-reqbody-data.yaml
@@ -0,0 +1,58 @@
+#注意keywordArray下的关键字必须为数组形式
+"allow-fqdn-reqheader-reqbody_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-http-allow-fqdn-reqheader-reqbody-001"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "action": "allow"
+ "isGre": 0
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 1
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "http"
+ "appIdObjects":
+ - "http"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "hopeSuccessNumber": 1
+ "command": 'curl --connect-timeout 5 -m 10 -H "Content-Type:application/json;charset=UTF-8" -X POST -d "{\"requestbody\":\"requestbodysubstring\",\"setcook\":\"asdf\",\"contenttype\": \"charset\",\"responsebody\": \"responsebodysubstring\"}" -kv --user-agent "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.70 Safari/537.36" http://open.node.com:180/go | iconv -f utf-8 -t gbk'
+ "commandRes": "requestbodysubstring"
+ "logQueryParam":
+ -
+ "queryFiledKey": "http_host"
+ "queryValue": "open.node.com"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_HTTP_HOST"
+ "objectType": "fqdn"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "$open.node.com"
+ -
+ "protocolField": "TSG_FIELD_HTTP_REQ_HDR"
+ "objectType": "http_signature"
+ "objectSubType": "User-Agent"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "Mozilla/5.0*"
+ "district": "User-Agent"
+ -
+ "protocolField": "TSG_FIELD_HTTP_REQ_BODY"
+ "objectType": "keywords"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "requestbodysubstring"
diff --git a/other/data/security/http/security-http-allow-fqdn-resbody-data.yaml b/other/data/security/http/security-http-allow-fqdn-resbody-data.yaml
new file mode 100644
index 0000000..b488cd7
--- /dev/null
+++ b/other/data/security/http/security-http-allow-fqdn-resbody-data.yaml
@@ -0,0 +1,49 @@
+#注意keywordArray下的关键字必须为数组形式
+"allow-fqdn-resbody_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-http-allow-fqdn-resbody-001"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "action": "allow"
+ "isGre": 0
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 1
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "http"
+ "appIdObjects":
+ - "http"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "hopeSuccessNumber": 1
+ "command": 'curl --connect-timeout 5 -m 10 -H "Content-Type:application/json;charset=UTF-8" -X POST -d "{\"requestbody\":\"requestbodysubstring\",\"setcook\":\"asdf\",\"contenttype\": \"charset\",\"responsebody\": \"responsebodysubstring\"}" -kv --user-agent "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.70 Safari/537.36" http://open.node.com:180/go | iconv -f utf-8 -t gbk'
+ "commandRes": "requestbodysubstring"
+ "logQueryParam":
+ -
+ "queryFiledKey": "http_host"
+ "queryValue": "open.node.com"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_HTTP_HOST"
+ "objectType": "fqdn"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "*open.node.com"
+ -
+ "protocolField": "TSG_FIELD_HTTP_RES_BODY"
+ "objectType": "keywords"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "responsebodysubstring" \ No newline at end of file
diff --git a/other/data/security/http/security-http-allow-fqdn-resheader-data.yaml b/other/data/security/http/security-http-allow-fqdn-resheader-data.yaml
new file mode 100644
index 0000000..99d62bf
--- /dev/null
+++ b/other/data/security/http/security-http-allow-fqdn-resheader-data.yaml
@@ -0,0 +1,50 @@
+#注意keywordArray下的关键字必须为数组形式
+"allow-fqdn-resheader_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-http-allow-fqdn-resheader-001"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "action": "allow"
+ "isGre": 0
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 1
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "http"
+ "appIdObjects":
+ - "http"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "hopeSuccessNumber": 1
+ "command": "wget -q -O- http://scoutbahamas.org/"
+ "commandRes": "ScoutBahamas"
+ "logQueryParam":
+ -
+ "queryFiledKey": "http_host"
+ "queryValue": "scoutbahamas.org"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_HTTP_HOST"
+ "objectType": "fqdn"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "$scoutbahamas.org"
+ -
+ "protocolField": "TSG_FIELD_HTTP_RES_HDR"
+ "objectType": "http_signature"
+ "objectSubType": "Content-Type"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "$text/html"
+ "district": "Content-Type" \ No newline at end of file
diff --git a/other/data/security/http/security-http-allow-fqdn-url-reqbody-resbody-data.yaml b/other/data/security/http/security-http-allow-fqdn-url-reqbody-resbody-data.yaml
new file mode 100644
index 0000000..c6c0a24
--- /dev/null
+++ b/other/data/security/http/security-http-allow-fqdn-url-reqbody-resbody-data.yaml
@@ -0,0 +1,65 @@
+#注意keywordArray下的关键字必须为数组形式
+"allow-fqdn-url-reqbody-resbody_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-http-allow-fqdn-url-reqbody-resbody-001"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "action": "allow"
+ "isGre": 0
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 1
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "http"
+ "appIdObjects":
+ - "http"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "hopeSuccessNumber": 1
+ "command": 'curl --connect-timeout 5 -m 10 -H "Content-Type:application/json;charset=UTF-8" -X POST -d "{\"requestbody\":\"requestbodysubstring\",\"setcook\":\"asdf\",\"contenttype\": \"charset\",\"responsebody\": \"responsebodysubstring\"}" -kv --user-agent "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.70 Safari/537.36" http://open.node.com:180/go | iconv -f utf-8 -t gbk'
+ "commandRes": "requestbodysubstring"
+ "logQueryParam":
+ -
+ "queryFiledKey": "http_host"
+ "queryValue": "open.node.com"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_HTTP_HOST"
+ "objectType": "fqdn"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "$open.node.com"
+ -
+ "protocolField": "TSG_FIELD_HTTP_URL"
+ "objectType": "url"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "open.node"
+ -
+ "protocolField": "TSG_FIELD_HTTP_REQ_BODY"
+ "objectType": "keywords"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "requestbodysubstring"
+ -
+ "protocolField": "TSG_FIELD_HTTP_RES_BODY"
+ "objectType": "keywords"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "responsebodysubstring" \ No newline at end of file
diff --git a/other/data/security/http/security-http-allow-fqdn-url-reqheader-resheader-data.yaml b/other/data/security/http/security-http-allow-fqdn-url-reqheader-resheader-data.yaml
new file mode 100644
index 0000000..f74d566
--- /dev/null
+++ b/other/data/security/http/security-http-allow-fqdn-url-reqheader-resheader-data.yaml
@@ -0,0 +1,67 @@
+#注意keywordArray下的关键字必须为数组形式
+"allow-fqdn-url-reqheader-resheader_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-http-allow-fqdn-url-reqheader-resheader-001"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "action": "allow"
+ "isGre": 0
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 1
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "http"
+ "appIdObjects":
+ - "http"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "hopeSuccessNumber": 1
+ "command": 'wget -q -O- --user-agent="Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/97.0.4692.99 Safari/537.36" http://chatal.net/'
+ "commandRes": "Park"
+ "logQueryParam":
+ -
+ "queryFiledKey": "http_host"
+ "queryValue": "chatal.net"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_HTTP_HOST"
+ "objectType": "fqdn"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "$chatal.net"
+ -
+ "protocolField": "TSG_FIELD_HTTP_URL"
+ "objectType": "url"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "chatal.net"
+ -
+ "protocolField": "TSG_FIELD_HTTP_REQ_HDR"
+ "objectType": "http_signature"
+ "objectSubType": "User-Agent"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "*i/537.36"
+ "district": "User-Agent"
+ -
+ "protocolField": "TSG_FIELD_HTTP_RES_HDR"
+ "objectType": "http_signature"
+ "objectSubType": "Content-Type"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "text/*"
+ "district": "Content-Type"
diff --git a/other/data/security/http/security-http-allow-fqdn-url-reqheader-resheader-reqbody-resbody-data.yaml b/other/data/security/http/security-http-allow-fqdn-url-reqheader-resheader-reqbody-resbody-data.yaml
new file mode 100644
index 0000000..a07b6c4
--- /dev/null
+++ b/other/data/security/http/security-http-allow-fqdn-url-reqheader-resheader-reqbody-resbody-data.yaml
@@ -0,0 +1,83 @@
+#注意keywordArray下的关键字必须为数组形式
+"allow-fqdn-url-reqheader-resheader-reqbody-resbody_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-http-allow-fqdn-url-reqheader-resheader-reqbody-resbody-001"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "action": "allow"
+ "isGre": 0
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 1
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "http"
+ "appIdObjects":
+ - "http"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "hopeSuccessNumber": 1
+ "command": 'curl --connect-timeout 5 -m 10 -H "Content-Type:application/json;charset=UTF-8" -X POST -d "{\"requestbody\":\"requestbodysubstring\",\"setcook\":\"asdf\",\"contenttype\": \"charset\",\"responsebody\": \"responsebodysubstring\"}" -kv --user-agent "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.70 Safari/537.36" http://open.node.com:180/go | iconv -f utf-8 -t gbk'
+ "commandRes": "requestbodysubstring"
+ "logQueryParam":
+ -
+ "queryFiledKey": "http_host"
+ "queryValue": "open.node.com"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_HTTP_HOST"
+ "objectType": "fqdn"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "$open.node.com"
+ -
+ "protocolField": "TSG_FIELD_HTTP_URL"
+ "objectType": "url"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "open.node"
+ -
+ "protocolField": "TSG_FIELD_HTTP_REQ_HDR"
+ "objectType": "http_signature"
+ "objectSubType": "User-Agent"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "Mozilla/5.0*"
+ "district": "User-Agent"
+ -
+ "protocolField": "TSG_FIELD_HTTP_RES_HDR"
+ "objectType": "http_signature"
+ "objectSubType": "Content-Type"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "*utf-8"
+ "district": "Content-Type"
+ -
+ "protocolField": "TSG_FIELD_HTTP_REQ_BODY"
+ "objectType": "keywords"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "requestbodysubstring"
+ -
+ "protocolField": "TSG_FIELD_HTTP_RES_BODY"
+ "objectType": "keywords"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "responsebodysubstring" \ No newline at end of file
diff --git a/other/data/security/http/security-http-allow-reqbody-resbody-data.yaml b/other/data/security/http/security-http-allow-reqbody-resbody-data.yaml
new file mode 100644
index 0000000..370005e
--- /dev/null
+++ b/other/data/security/http/security-http-allow-reqbody-resbody-data.yaml
@@ -0,0 +1,49 @@
+#注意keywordArray下的关键字必须为数组形式
+"allow-reqbody-resbody_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-http-allow-reqbody-resbody-001"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "action": "allow"
+ "isGre": 0
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 1
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "http"
+ "appIdObjects":
+ - "http"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "hopeSuccessNumber": 1
+ "command": 'curl --connect-timeout 5 -m 10 -H "Content-Type:application/json;charset=UTF-8" -X POST -d "{\"requestbody\":\"requestbodysubstring\",\"setcook\":\"asdf\",\"contenttype\": \"charset\",\"responsebody\": \"responsebodysubstring\"}" -kv --user-agent "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.70 Safari/537.36" http://open.node.com:180/go | iconv -f utf-8 -t gbk'
+ "commandRes": "requestbodysubstring"
+ "logQueryParam":
+ -
+ "queryFiledKey": "http_host"
+ "queryValue": "open.node.com"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_HTTP_REQ_BODY"
+ "objectType": "keywords"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "requestbodysubstring"
+ -
+ "protocolField": "TSG_FIELD_HTTP_RES_BODY"
+ "objectType": "keywords"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "responsebodysubstring" \ No newline at end of file
diff --git a/other/data/security/http/security-http-allow-reqbody-substring-data.yaml b/other/data/security/http/security-http-allow-reqbody-substring-data.yaml
new file mode 100644
index 0000000..afdcd34
--- /dev/null
+++ b/other/data/security/http/security-http-allow-reqbody-substring-data.yaml
@@ -0,0 +1,41 @@
+#注意keywordArray下的关键字必须为数组形式
+"allow-reqbody-substring_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-http-allow-resbody-substring-001"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "action": "allow"
+ "isGre": 0
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 1
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "http"
+ "appIdObjects":
+ - "http"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "hopeSuccessNumber": 1
+ "command": 'curl --connect-timeout 5 -m 10 -H "Content-Type:application/json;charset=UTF-8" -X POST -d "{\"requestbody\":\"reqbodysubstring\",\"setcook\":\"asdf\",\"contenttype\": \"charset\",\"responsebody\": \"resbody\"}" -kv --user-agent "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.70 Safari/537.36" http://open.node.com:180/go | iconv -f utf-8 -t gbk'
+ "commandRes": "reqbodysubstring"
+ "logQueryParam":
+ -
+ "queryFiledKey": "http_host"
+ "queryValue": "open.node.com"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_HTTP_REQ_BODY"
+ "objectType": "keywords"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "odysubst" \ No newline at end of file
diff --git a/other/data/security/http/security-http-allow-reqheader-exactly-data.yaml b/other/data/security/http/security-http-allow-reqheader-exactly-data.yaml
new file mode 100644
index 0000000..97abdd9
--- /dev/null
+++ b/other/data/security/http/security-http-allow-reqheader-exactly-data.yaml
@@ -0,0 +1,42 @@
+#注意keywordArray下的关键字必须为数组形式
+"allow-reqheader-exactly_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-http-allow-reqheader-exactly-001"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "action": "allow"
+ "isGre": 0
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 1
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "http"
+ "appIdObjects":
+ - "http"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "hopeSuccessNumber": 1
+ "command": 'wget -q -O- --user-agent "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.70 Safari/537.36" http://www.anonymoussurfing.net/'
+ "commandRes": "Inquire"
+ "logQueryParam":
+ -
+ "queryFiledKey": "http_host"
+ "queryValue": "www.anonymoussurfing.net"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_HTTP_REQ_HDR"
+ "objectType": "http_signature"
+ "objectSubType": "User-Agent"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "$Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.70 Safari/537.36"
+ "district": "User-Agent" \ No newline at end of file
diff --git a/other/data/security/http/security-http-allow-reqheader-prefix-data.yaml b/other/data/security/http/security-http-allow-reqheader-prefix-data.yaml
new file mode 100644
index 0000000..ad5da77
--- /dev/null
+++ b/other/data/security/http/security-http-allow-reqheader-prefix-data.yaml
@@ -0,0 +1,42 @@
+#注意keywordArray下的关键字必须为数组形式
+"allow-reqheader-prefix_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-http-allow-reqheader-prefix-001"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "action": "allow"
+ "isGre": 0
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 1
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "http"
+ "appIdObjects":
+ - "http"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "hopeSuccessNumber": 1
+ "command": 'wget -q -O- --user-agent "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.70 Safari/537.36" http://www.autonet.ru/'
+ "commandRes": "Автомобильные"
+ "logQueryParam":
+ -
+ "queryFiledKey": "http_host"
+ "queryValue": "www.autonet.ru"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_HTTP_REQ_HDR"
+ "objectType": "http_signature"
+ "objectSubType": "User-Agent"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "Mozilla/5.0*"
+ "district": "User-Agent"
diff --git a/other/data/security/http/security-http-allow-reqheader-resheader-data.yaml b/other/data/security/http/security-http-allow-reqheader-resheader-data.yaml
new file mode 100644
index 0000000..b1c944e
--- /dev/null
+++ b/other/data/security/http/security-http-allow-reqheader-resheader-data.yaml
@@ -0,0 +1,51 @@
+#注意keywordArray下的关键字必须为数组形式
+"allow-reqheader-resheader_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-http-allow-reqheader-resheader-001"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "action": "allow"
+ "isGre": 0
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 1
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "http"
+ "appIdObjects":
+ - "http"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "hopeSuccessNumber": 1
+ "command": 'wget -q -O- --user-agent "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.70 Safari/537.36" http://www.anonymoussurfing.net/'
+ "commandRes": "Inquire"
+ "logQueryParam":
+ -
+ "queryFiledKey": "http_host"
+ "queryValue": "www.anonymoussurfing.net"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_HTTP_REQ_HDR"
+ "objectType": "http_signature"
+ "objectSubType": "User-Agent"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "$Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.70 Safari/537.36"
+ "district": "User-Agent"
+ -
+ "protocolField": "TSG_FIELD_HTTP_RES_HDR"
+ "objectType": "http_signature"
+ "objectSubType": "Content-Type"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "text*"
+ "district": "Content-Type" \ No newline at end of file
diff --git a/other/data/security/http/security-http-allow-reqheader-resheader-reqbody-resbody-data.yaml b/other/data/security/http/security-http-allow-reqheader-resheader-reqbody-resbody-data.yaml
new file mode 100644
index 0000000..49ec7ff
--- /dev/null
+++ b/other/data/security/http/security-http-allow-reqheader-resheader-reqbody-resbody-data.yaml
@@ -0,0 +1,67 @@
+#注意keywordArray下的关键字必须为数组形式
+"allow-reqheader-resheader-reqbody-resbody_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-http-allow-reqheader-resheader-reqbody-resbody-001"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "action": "allow"
+ "isGre": 0
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 1
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "http"
+ "appIdObjects":
+ - "http"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "hopeSuccessNumber": 1
+ "command": 'curl --connect-timeout 5 -m 10 -H "Content-Type:application/json;charset=UTF-8" -X POST -d "{\"requestbody\":\"requestbodysubstring\",\"setcook\":\"asdf\",\"contenttype\": \"charset\",\"responsebody\": \"responsebodysubstring\"}" -kv --user-agent "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.70 Safari/537.36" http://open.node.com:180/go | iconv -f utf-8 -t gbk'
+ "commandRes": "requestbodysubstring"
+ "logQueryParam":
+ -
+ "queryFiledKey": "http_host"
+ "queryValue": "open.node.com"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_HTTP_REQ_HDR"
+ "objectType": "http_signature"
+ "objectSubType": "User-Agent"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "Mozilla/5.0*"
+ "district": "User-Agent"
+ -
+ "protocolField": "TSG_FIELD_HTTP_RES_HDR"
+ "objectType": "http_signature"
+ "objectSubType": "Content-Type"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "*utf-8"
+ "district": "Content-Type"
+ -
+ "protocolField": "TSG_FIELD_HTTP_REQ_BODY"
+ "objectType": "keywords"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "requestbodysubstring"
+ -
+ "protocolField": "TSG_FIELD_HTTP_RES_BODY"
+ "objectType": "keywords"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "responsebodysubstring" \ No newline at end of file
diff --git a/other/data/security/http/security-http-allow-reqheader-substring-data.yaml b/other/data/security/http/security-http-allow-reqheader-substring-data.yaml
new file mode 100644
index 0000000..e573ad4
--- /dev/null
+++ b/other/data/security/http/security-http-allow-reqheader-substring-data.yaml
@@ -0,0 +1,42 @@
+#注意keywordArray下的关键字必须为数组形式
+"allow-reqheader-substring_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-http-allow-reqheader-substring-001"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "action": "allow"
+ "isGre": 0
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 1
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "http"
+ "appIdObjects":
+ - "http"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "hopeSuccessNumber": 1
+ "command": 'wget -q -O- --user-agent "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.70 Safari/537.36" http://bypass4you.ws/'
+ "commandRes": "WEBSITE"
+ "logQueryParam":
+ -
+ "queryFiledKey": "http_host"
+ "queryValue": "bypass4you.ws"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_HTTP_REQ_HDR"
+ "objectType": "http_signature"
+ "objectSubType": "User-Agent"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78."
+ "district": "User-Agent" \ No newline at end of file
diff --git a/other/data/security/http/security-http-allow-reqheader-suffix-data.yaml b/other/data/security/http/security-http-allow-reqheader-suffix-data.yaml
new file mode 100644
index 0000000..1c82e5b
--- /dev/null
+++ b/other/data/security/http/security-http-allow-reqheader-suffix-data.yaml
@@ -0,0 +1,42 @@
+#注意keywordArray下的关键字必须为数组形式
+"allow-reqheader-suffix_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-http-allow-reqheader-suffix-001"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "action": "allow"
+ "isGre": 0
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 1
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "http"
+ "appIdObjects":
+ - "http"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "hopeSuccessNumber": 1
+ "command": 'wget -q -O- --user-agent "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.70 Safari/537.36" http://www.autonet.ru/'
+ "commandRes": "Автомобильные"
+ "logQueryParam":
+ -
+ "queryFiledKey": "http_host"
+ "queryValue": "www.autonet.ru"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_HTTP_REQ_HDR"
+ "objectType": "http_signature"
+ "objectSubType": "User-Agent"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "*Safari/537.36"
+ "district": "User-Agent" \ No newline at end of file
diff --git a/other/data/security/http/security-http-allow-resbody-substring-data.yaml b/other/data/security/http/security-http-allow-resbody-substring-data.yaml
new file mode 100644
index 0000000..eb67bd1
--- /dev/null
+++ b/other/data/security/http/security-http-allow-resbody-substring-data.yaml
@@ -0,0 +1,41 @@
+#注意keywordArray下的关键字必须为数组形式
+"allow-resbody-substring_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-http-allow-resbody-substring-001"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "action": "allow"
+ "isGre": 0
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 1
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "http"
+ "appIdObjects":
+ - "http"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "hopeSuccessNumber": 1
+ "command": 'curl --connect-timeout 5 -m 10 -H "Content-Type:application/json;charset=UTF-8" -X POST -d "{\"requestbody\":\"reqbody\",\"setcook\":\"asdf\",\"contenttype\": \"charset\",\"responsebody\": \"resbodysubstring\"}" -kv --user-agent "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.70 Safari/537.36" http://open.node.com:180/go | iconv -f utf-8 -t gbk'
+ "commandRes": "resbodysubstring"
+ "logQueryParam":
+ -
+ "queryFiledKey": "http_host"
+ "queryValue": "open.node.com"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_HTTP_RES_BODY"
+ "objectType": "keywords"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "resbodysubstring" \ No newline at end of file
diff --git a/other/data/security/http/security-http-allow-resheader-exactly-data.yaml b/other/data/security/http/security-http-allow-resheader-exactly-data.yaml
new file mode 100644
index 0000000..080985d
--- /dev/null
+++ b/other/data/security/http/security-http-allow-resheader-exactly-data.yaml
@@ -0,0 +1,42 @@
+#注意keywordArray下的关键字必须为数组形式
+"allow-resheader-exactly_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-http-allow-resheader-exactly-001"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "action": "allow"
+ "isGre": 0
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 1
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "http"
+ "appIdObjects":
+ - "http"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "hopeSuccessNumber": 1
+ "command": "wget -q -O- http://www.yumi.com/"
+ "commandRes": "玉米"
+ "logQueryParam":
+ -
+ "queryFiledKey": "http_host"
+ "queryValue": "www.yumi.com"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_HTTP_RES_HDR"
+ "objectType": "http_signature"
+ "objectSubType": "Content-Type"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "$text/html"
+ "district": "Content-Type" \ No newline at end of file
diff --git a/other/data/security/http/security-http-allow-resheader-prefix-data.yaml b/other/data/security/http/security-http-allow-resheader-prefix-data.yaml
new file mode 100644
index 0000000..961f6e8
--- /dev/null
+++ b/other/data/security/http/security-http-allow-resheader-prefix-data.yaml
@@ -0,0 +1,42 @@
+#注意keywordArray下的关键字必须为数组形式
+"allow-resheader-prefix_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-http-allow-resheader-prefix -001"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "action": "allow"
+ "isGre": 0
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 1
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "http"
+ "appIdObjects":
+ - "http"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "hopeSuccessNumber": 1
+ "command": "wget -q -O- http://b2bos.ru/"
+ "commandRes": "B2B"
+ "logQueryParam":
+ -
+ "queryFiledKey": "http_host"
+ "queryValue": "b2bos.ru"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_HTTP_RES_HDR"
+ "objectType": "http_signature"
+ "objectSubType": "Content-Type"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "text*"
+ "district": "Content-Type" \ No newline at end of file
diff --git a/other/data/security/http/security-http-allow-resheader-substring-data.yaml b/other/data/security/http/security-http-allow-resheader-substring-data.yaml
new file mode 100644
index 0000000..7c01e51
--- /dev/null
+++ b/other/data/security/http/security-http-allow-resheader-substring-data.yaml
@@ -0,0 +1,50 @@
+#注意keywordArray下的关键字必须为数组形式
+"allow-resheader-substring_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-http-allow-url-resheader-001"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "action": "allow"
+ "isGre": 0
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 1
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "http"
+ "appIdObjects":
+ - "http"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "hopeSuccessNumber": 1
+ "command": "wget -q -O- http://bypassitnow.com/"
+ "commandRes": "프록시 접"
+ "logQueryParam":
+ -
+ "queryFiledKey": "http_host"
+ "queryValue": "bypassitnow.com"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_HTTP_URL"
+ "objectType": "url"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "bypas*"
+ -
+ "protocolField": "TSG_FIELD_HTTP_RES_HDR"
+ "objectType": "http_signature"
+ "objectSubType": "Content-Type"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "xt/ht"
+ "district": "Content-Type" \ No newline at end of file
diff --git a/other/data/security/http/security-http-allow-resheader-suffix-data.yaml b/other/data/security/http/security-http-allow-resheader-suffix-data.yaml
new file mode 100644
index 0000000..9607e8d
--- /dev/null
+++ b/other/data/security/http/security-http-allow-resheader-suffix-data.yaml
@@ -0,0 +1,42 @@
+#注意keywordArray下的关键字必须为数组形式
+"allow-resheader-suffix_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-http-allow-resheader-suffix -001"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "action": "allow"
+ "isGre": 0
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 1
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "http"
+ "appIdObjects":
+ - "http"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "hopeSuccessNumber": 1
+ "command": "wget -q -O- http://www.ofmonkey.com/query/domain"
+ "commandRes": "域名归属地"
+ "logQueryParam":
+ -
+ "queryFiledKey": "http_host"
+ "queryValue": "www.ofmonkey.com"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_HTTP_RES_HDR"
+ "objectType": "http_signature"
+ "objectSubType": "Content-Type"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "*utf-8"
+ "district": "Content-Type" \ No newline at end of file
diff --git a/other/data/security/http/security-http-allow-url-reqbody-data.yaml b/other/data/security/http/security-http-allow-url-reqbody-data.yaml
new file mode 100644
index 0000000..cba9930
--- /dev/null
+++ b/other/data/security/http/security-http-allow-url-reqbody-data.yaml
@@ -0,0 +1,49 @@
+#注意keywordArray下的关键字必须为数组形式
+"allow-url-reqbody_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-http-allow-url-reqbody-001"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "action": "allow"
+ "isGre": 0
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 1
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "http"
+ "appIdObjects":
+ - "http"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "hopeSuccessNumber": 1
+ "command": 'curl --connect-timeout 5 -m 10 -H "Content-Type:application/json;charset=UTF-8" -X POST -d "{\"requestbody\":\"requestbodysubstring\",\"setcook\":\"asdf\",\"contenttype\": \"charset\",\"responsebody\": \"responsebodysubstring\"}" -kv --user-agent "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.70 Safari/537.36" http://open.node.com:180/go | iconv -f utf-8 -t gbk'
+ "commandRes": "requestbodysubstring"
+ "logQueryParam":
+ -
+ "queryFiledKey": "http_host"
+ "queryValue": "open.node.com"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_HTTP_URL"
+ "objectType": "url"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "open.node*"
+ -
+ "protocolField": "TSG_FIELD_HTTP_REQ_BODY"
+ "objectType": "keywords"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "requestbodysubstring" \ No newline at end of file
diff --git a/other/data/security/http/security-http-allow-url-reqheader-data.yaml b/other/data/security/http/security-http-allow-url-reqheader-data.yaml
new file mode 100644
index 0000000..162bcea
--- /dev/null
+++ b/other/data/security/http/security-http-allow-url-reqheader-data.yaml
@@ -0,0 +1,50 @@
+#注意keywordArray下的关键字必须为数组形式
+"allow-url-reqheader_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-http-allow-url-reqheader-001"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "action": "allow"
+ "isGre": 0
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 1
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "http"
+ "appIdObjects":
+ - "http"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "hopeSuccessNumber": 1
+ "command": 'wget -q -O- --user-agent "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.70 Safari/537.36" http://bypass4you.ws/'
+ "commandRes": "WEBSITE"
+ "logQueryParam":
+ -
+ "queryFiledKey": "http_host"
+ "queryValue": "bypass4you.ws"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_HTTP_URL"
+ "objectType": "url"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "*4you.ws/"
+ -
+ "protocolField": "TSG_FIELD_HTTP_REQ_HDR"
+ "objectType": "http_signature"
+ "objectSubType": "User-Agent"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78."
+ "district": "User-Agent" \ No newline at end of file
diff --git a/other/data/security/http/security-http-allow-url-resbody-data.yaml b/other/data/security/http/security-http-allow-url-resbody-data.yaml
new file mode 100644
index 0000000..2e4159b
--- /dev/null
+++ b/other/data/security/http/security-http-allow-url-resbody-data.yaml
@@ -0,0 +1,49 @@
+#注意keywordArray下的关键字必须为数组形式
+"allow-url-resbody_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-http-allow-url-resbody-001"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "action": "allow"
+ "isGre": 0
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 1
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "http"
+ "appIdObjects":
+ - "http"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "hopeSuccessNumber": 1
+ "command": 'curl --connect-timeout 5 -m 10 -H "Content-Type:application/json;charset=UTF-8" -X POST -d "{\"requestbody\":\"requestbodysubstring\",\"setcook\":\"asdf\",\"contenttype\": \"charset\",\"responsebody\": \"responsebodysubstring\"}" -kv --user-agent "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.70 Safari/537.36" http://open.node.com:180/go | iconv -f utf-8 -t gbk'
+ "commandRes": "responsebodysubstring"
+ "logQueryParam":
+ -
+ "queryFiledKey": "http_host"
+ "queryValue": "open.node.com"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_HTTP_URL"
+ "objectType": "url"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "$open.node.com:180/go"
+ -
+ "protocolField": "TSG_FIELD_HTTP_RES_BODY"
+ "objectType": "keywords"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "responsebodysubstring" \ No newline at end of file
diff --git a/other/data/security/http/security-http-allow-url-resheader-data.yaml b/other/data/security/http/security-http-allow-url-resheader-data.yaml
new file mode 100644
index 0000000..f13aa82
--- /dev/null
+++ b/other/data/security/http/security-http-allow-url-resheader-data.yaml
@@ -0,0 +1,42 @@
+#注意keywordArray下的关键字必须为数组形式
+"allow-url-resheader_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-http-allow-url-resheader-001"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "action": "allow"
+ "isGre": 0
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 1
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "http"
+ "appIdObjects":
+ - "http"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "hopeSuccessNumber": 1
+ "command": "wget -q -O- http://bypassitnow.com/"
+ "commandRes": "프록시 접"
+ "logQueryParam":
+ -
+ "queryFiledKey": "http_host"
+ "queryValue": "bypassitnow.com"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_HTTP_RES_HDR"
+ "objectType": "http_signature"
+ "objectSubType": "Content-Type"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "xt/ht"
+ "district": "Content-Type" \ No newline at end of file
diff --git a/other/data/security/http/security-http-allow-url-resheader-resbody-data.yaml b/other/data/security/http/security-http-allow-url-resheader-resbody-data.yaml
new file mode 100644
index 0000000..f86bb2c
--- /dev/null
+++ b/other/data/security/http/security-http-allow-url-resheader-resbody-data.yaml
@@ -0,0 +1,58 @@
+#注意keywordArray下的关键字必须为数组形式
+"allow-url-resheader-resbody_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-http-allow-url-resheader-resbody-001"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "action": "allow"
+ "isGre": 0
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 1
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "http"
+ "appIdObjects":
+ - "http"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "hopeSuccessNumber": 1
+ "command": 'curl --connect-timeout 5 -m 10 -H "Content-Type:application/json;charset=UTF-8" -X POST -d "{\"requestbody\":\"requestbodysubstring\",\"setcook\":\"asdf\",\"contenttype\": \"charset\",\"responsebody\": \"responsebodysubstring\"}" -kv --user-agent "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.70 Safari/537.36" http://open.node.com:180/go | iconv -f utf-8 -t gbk'
+ "commandRes": "requestbodysubstring"
+ "logQueryParam":
+ -
+ "queryFiledKey": "http_host"
+ "queryValue": "open.node.com"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_HTTP_URL"
+ "objectType": "url"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "open.node"
+ -
+ "protocolField": "TSG_FIELD_HTTP_RES_HDR"
+ "objectType": "http_signature"
+ "objectSubType": "Content-Type"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "*utf-8"
+ "district": "Content-Type"
+ -
+ "protocolField": "TSG_FIELD_HTTP_RES_BODY"
+ "objectType": "keywords"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "responsebodysubstring" \ No newline at end of file
diff --git a/other/data/security/http/security-http-allow-url-suffix-data.yaml b/other/data/security/http/security-http-allow-url-suffix-data.yaml
index 5f3d179..5c8edf5 100644
--- a/other/data/security/http/security-http-allow-url-suffix-data.yaml
+++ b/other/data/security/http/security-http-allow-url-suffix-data.yaml
@@ -38,4 +38,43 @@
"objectList":
- "addItemList":
- "keywordArray":
- - "*iang5.com/" \ No newline at end of file
+ - "*iang5.com/"
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-http-allow-url-suffix-001"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "action": "allow"
+ "isGre": 0
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 0
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "http"
+ "appIdObjects":
+ - "http"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "hopeSuccessNumber": 1
+ "command": "wget -q -O- http://www.xiang5.com/"
+ "commandRes": "女生小说"
+ "logQueryParam":
+ -
+ "queryFiledKey": "http_url"
+ "queryValue": "empty"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_HTTP_URL"
+ "objectType": "url"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "*iang5.com/" \ No newline at end of file
diff --git a/other/data/security/http/security-http-deny-fqdn-exactly-data.yaml b/other/data/security/http/security-http-deny-fqdn-exactly-data.yaml
index 5e04131..2508004 100644
--- a/other/data/security/http/security-http-deny-fqdn-exactly-data.yaml
+++ b/other/data/security/http/security-http-deny-fqdn-exactly-data.yaml
@@ -1,9 +1,9 @@
#注意keywordArray下的关键字必须为数组形式
-"deny-fqdn-exactly_data":
+"deny-reset-update-block403-fqdn-exactly_data":
-
"opAction": "add"
"returnData": 1
- "policyName": "security-http-deny-fqdn-exactly-001"
+ "policyName": "security-http-deny-reset-update-block403-fqdn-exactly"
"policyType": "tsg_security"
"logType": "security_event"
"action": "deny"
@@ -88,10 +88,54 @@
- "addItemList":
- "keywordArray":
- "$by.841k.cn"
+"deny-block403-fqdn-exactly_data":
-
"opAction": "add"
"returnData": 1
- "policyName": "security-http-deny-fqdn-exactly-001-2"
+ "policyName": "security-http-deny-block403-fqdn-exactly"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "action": "deny"
+ "method": "block"
+ "code": 403
+ "message": "This is block result"
+ "isGre": 0
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 1
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "http"
+ "appIdObjects":
+ - "http"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "hopeSuccessNumber": 1
+ "command": "wget --debug -q -O- http://by.841k.cn/home/user/index.html"
+ "commandRes": "403 Forbidden"
+ "logQueryParam":
+ -
+ "queryFiledKey": "http_host"
+ "queryValue": "by.841k.cn"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_HTTP_HOST"
+ "objectType": "fqdn"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "$by.841k.cn"
+"deny-block404-fqdn-exactly_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-http-deny-block404-fqdn-exactly"
"policyType": "tsg_security"
"logType": "security_event"
"action": "deny"
@@ -130,10 +174,11 @@
- "addItemList":
- "keywordArray":
- "$by.841k.cn"
+"deny-alert200-update-204-fqdn-exactly_data":
-
"opAction": "add"
"returnData": 1
- "policyName": "security-http-deny-fqdn-exactly-002"
+ "policyName": "security-http-deny-alert200-update-204-fqdn-exactly"
"policyType": "tsg_security"
"logType": "security_event"
"action": "deny"
@@ -215,10 +260,54 @@
- "addItemList":
- "keywordArray":
- "$by.841k.cn"
+"deny-alert204-fqdn-exactly_data":
-
"opAction": "add"
"returnData": 1
- "policyName": "security-http-deny-fqdn-exactly-003"
+ "policyName": "security-http-deny-alert204-fqdn-exactly"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "action": "deny"
+ "method": "alert"
+ "code": 204
+ "message": "This is alert 200 result"
+ "isGre": 0
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 1
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "http"
+ "appIdObjects":
+ - "http"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "hopeSuccessNumber": 1
+ "command": "wget -q -O- http://by.841k.cn/home/user/index.html"
+ "commandRes": "204 - Not Content"
+ "logQueryParam":
+ -
+ "queryFiledKey": "http_host"
+ "queryValue": "by.841k.cn"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_HTTP_HOST"
+ "objectType": "fqdn"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "$by.841k.cn"
+"deny-rate-limit-update-big-fqdn-exactly_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-http-deny-rate-limit-update-big-fqdn-exactly"
"policyType": "tsg_security"
"logType": "security_event"
"action": "deny"
@@ -297,11 +386,54 @@
"objectList":
- "addItemList":
- "keywordArray":
- - "$www.aoyou.com"
+ - "$www.aoyou.com"
+"deny-rate-limit-big-fqdn-exactly_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-http-deny-rate-limit-big-fqdn-exactly"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "action": "deny"
+ "method": "rate_limit"
+ "bps": 10000000
+ "isGre": 0
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 1
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "http"
+ "appIdObjects":
+ - "http"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "hopeSuccessNumber": 1
+ "command": "curl --connect-timeout 10 -m 10 http://www.aoyou.com/"
+ "commandRes": "timed out"
+ "logQueryParam":
+ -
+ "queryFiledKey": "http_host"
+ "queryValue": "www.aoyou.com"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_HTTP_HOST"
+ "objectType": "fqdn"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "$www.aoyou.com"
+"deny-tamper-fqdn-exactly_data":
-
"opAction": "add"
"returnData": 1
- "policyName": "security-http-deny-fqdn-exactly-004"
+ "policyName": "security-http-deny-tamper-fqdn-exactly"
"policyType": "tsg_security"
"logType": "security_event"
"action": "deny"
diff --git a/other/data/security/http/security-http-deny-fqdn-suffix-data.yaml b/other/data/security/http/security-http-deny-fqdn-suffix-data.yaml
index 4cb570f..0e91dec 100644
--- a/other/data/security/http/security-http-deny-fqdn-suffix-data.yaml
+++ b/other/data/security/http/security-http-deny-fqdn-suffix-data.yaml
@@ -1,5 +1,5 @@
#注意keywordArray下的关键字必须为数组形式
-"deny-fqdn-suffix_data":
+"deny-reset-update-block-403-fqdn-suffix_data":
-
"opAction": "add"
"returnData": 1
@@ -83,6 +83,50 @@
- "addItemList":
- "keywordArray":
- "*841k.cn"
+"deny-block-403-fqdn-suffix_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-http-deny-fqdn-suffix-001-1"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "action": "deny"
+ "method": "block"
+ "code": 403
+ "message": "This is block result"
+ "isGre": 0
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 1
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "http"
+ "appIdObjects":
+ - "http"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "hopeSuccessNumber": 1
+ "command": "wget --debug -q -O- http://by.841k.cn/home/user/index.html"
+ "commandRes": "403 Forbidden"
+ "logQueryParam":
+ -
+ "queryFiledKey": "http_host"
+ "queryValue": "by.841k.cn"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_HTTP_HOST"
+ "objectType": "fqdn"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "*841k.cn"
+"deny-block-404-fqdn-suffix_data":
-
"opAction": "add"
"returnData": 1
@@ -125,6 +169,7 @@
- "addItemList":
- "keywordArray":
- "*841k.cn"
+"deny-alert-200-update-204-fqdn-suffix_data":
-
"opAction": "add"
"returnData": 1
@@ -210,6 +255,50 @@
- "addItemList":
- "keywordArray":
- "*841k.cn"
+"deny-alert-204-fqdn-suffix_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-http-deny-fqdn-suffix-002-1"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "action": "deny"
+ "method": "alert"
+ "code": 204
+ "message": "This is alert 200 result"
+ "isGre": 0
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 1
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "http"
+ "appIdObjects":
+ - "http"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "hopeSuccessNumber": 1
+ "command": "wget -q -O- http://by.841k.cn/home/user/index.html"
+ "commandRes": "204 - Not Content"
+ "logQueryParam":
+ -
+ "queryFiledKey": "http_host"
+ "queryValue": "by.841k.cn"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_HTTP_HOST"
+ "objectType": "fqdn"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "*841k.cn"
+"deny-rate-limit-update-big-fqdn-suffix_data":
-
"opAction": "add"
"returnData": 1
@@ -292,4 +381,46 @@
"objectList":
- "addItemList":
- "keywordArray":
- - "*w.aoyou.com" \ No newline at end of file
+ - "*w.aoyou.com"
+"deny-rate-big-fqdn-suffix_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-http-deny-fqdn-suffix-003-1"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "action": "deny"
+ "method": "rate_limit"
+ "bps": 10000000
+ "isGre": 0
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 1
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "http"
+ "appIdObjects":
+ - "http"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "hopeSuccessNumber": 1
+ "command": "curl --connect-timeout 10 -m 10 http://www.aoyou.com/"
+ "commandRes": "timed out"
+ "logQueryParam":
+ -
+ "queryFiledKey": "http_host"
+ "queryValue": "www.aoyou.com"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_HTTP_HOST"
+ "objectType": "fqdn"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "*w.aoyou.com" \ No newline at end of file
diff --git a/other/data/security/http/security-http-deny-fqdn-url-data.yaml b/other/data/security/http/security-http-deny-fqdn-url-data.yaml
index 9953e94..45ec68e 100644
--- a/other/data/security/http/security-http-deny-fqdn-url-data.yaml
+++ b/other/data/security/http/security-http-deny-fqdn-url-data.yaml
@@ -1,9 +1,9 @@
#注意keywordArray下的关键字必须为数组形式
-"deny-fqdn-url_data":
+"deny-fqdn-url-log-open_data":
-
"opAction": "add"
"returnData": 1
- "policyName": "security-http-deny-fqdn-url-001"
+ "policyName": "security-http-deny-fqdn-url-log-open"
"policyType": "tsg_security"
"logType": "security_event"
"action": "deny"
@@ -49,4 +49,55 @@
"objectList":
- "addItemList":
- "keywordArray":
- - "*radioamateur.eu" \ No newline at end of file
+ - "*radioamateur.eu"
+"deny-fqdn-url-log-close_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-http-deny-fqdn-url-log-close"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "action": "deny"
+ "method": "redirect"
+ "code": 303
+ "to": "https://www.whatsapp.com/{{tsg_policy_id}}{{tsg_subscriber_id}}{{tsg_client_ip}}"
+ "isGre": 0
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 0
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "http"
+ "appIdObjects":
+ - "http"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "hopeSuccessNumber": 1
+ "command": "wget --debug -q -O- http://radioamateur.eu/TECH.html"
+ "commandRes": "303"
+ "logQueryParam":
+ -
+ "queryFiledKey": "http_host"
+ "queryValue": "empty"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_HTTP_URL"
+ "objectType": "url"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "*radioamateur.eu/TECH.html"
+ -
+ "protocolField": "TSG_FIELD_HTTP_HOST"
+ "objectType": "fqdn"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "*radioamateur.eu" \ No newline at end of file
diff --git a/other/data/security/http/security-http-deny-fqdn-url-reqheader-resheader-reqbody-resbody-data.yaml b/other/data/security/http/security-http-deny-fqdn-url-reqheader-resheader-reqbody-resbody-data.yaml
index 3e2a021..167df78 100644
--- a/other/data/security/http/security-http-deny-fqdn-url-reqheader-resheader-reqbody-resbody-data.yaml
+++ b/other/data/security/http/security-http-deny-fqdn-url-reqheader-resheader-reqbody-resbody-data.yaml
@@ -1,9 +1,9 @@
#注意keywordArray下的关键字必须为数组形式
-"deny-fqdn-url-reqheader-resheader-reqbody-resbody_data":
+"deny-reset-fqdn-url-reqheader-resheader-reqbody-resbody_data":
-
"opAction": "add"
"returnData": 1
- "policyName": "security-http-deny-fqdn-host-url-reqheadrr-resheader-reqbody-resbody-001"
+ "policyName": "security-http-deny-reset-fqdn-url-reqheader-resheader-reqbody-resbody"
"policyType": "tsg_security"
"logType": "security_event"
"action": "deny"
@@ -81,7 +81,8 @@
"objectList":
- "addItemList":
- "keywordArray":
- - "SecurityTest"
+ - "SecurityTes"
+"deny-rate-little-fqdn-url-reqheader-resheader-reqbody-resbody_data":
-
"opAction": "add"
"returnData": 1
@@ -164,7 +165,7 @@
"objectList":
- "addItemList":
- "keywordArray":
- - "SecurityTest"
+ - "SecurityTes"
-
"opAction": "add"
"returnData": 1
@@ -247,4 +248,4 @@
"objectList":
- "addItemList":
- "keywordArray":
- - "SecurityTest" \ No newline at end of file
+ - "SecurityTes" \ No newline at end of file
diff --git a/other/data/security/http/security-http-deny-only-IpAndApplication-data.yaml b/other/data/security/http/security-http-deny-only-IpAndApplication-data.yaml
index d7202e5..6ff4a84 100644
--- a/other/data/security/http/security-http-deny-only-IpAndApplication-data.yaml
+++ b/other/data/security/http/security-http-deny-only-IpAndApplication-data.yaml
@@ -1,9 +1,9 @@
#注意keywordArray下的关键字必须为数组形式
-"deny-only-IpAndApplication_data":
+"deny-alert-only-IpAndApplication_data":
-
"opAction": "add"
"returnData": 1
- "policyName": "security-http-deny-fqdn-exactly-001"
+ "policyName": "security-http-deny-alert-fqdn-exactly"
"policyType": "tsg_security"
"logType": "security_event"
"action": "deny"
@@ -47,4 +47,53 @@
- "addItemList":
-
"ip": "1.1.1.1"
- "port": "0-65535" \ No newline at end of file
+ "port": "0-65535"
+"deny-alert-noLog-only-IpAndApplication_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-http-deny-alert-noLog-fqdn-exactly"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "action": "deny"
+ "method": "alert"
+ "code": 200
+ "html_profile":
+ "responseUrl": "/v1/policy/profile/responsepages"
+ "pageFiles": "pageFiles"
+ "filName": "Create-Response_Pages-test-2.htm"
+ "flag": "resPages"
+ "feature": "nofeature"
+ "isGre": 0
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 0
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "http"
+ "appIdObjects":
+ - "http"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "hopeSuccessNumber": 1
+ "command": "curl -kv http://by.841k.cn/home/user/index.html"
+ "commandRes": "Empty reply from server"
+ "logQueryParam":
+ -
+ "queryFiledKey": "http_host"
+ "queryValue": "empty"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_SECURITY_SOURCE_ADDR"
+ "objectType": "ip"
+ "objectSubType": "endpoint"
+ "objectList":
+ - "addItemList":
+ -
+ "ip": "1.1.1.1"
+ "port": "0-65535" \ No newline at end of file
diff --git a/other/data/security/http/security-http-deny-reqheader-prefix-data.yaml b/other/data/security/http/security-http-deny-reqheader-prefix-data.yaml
index eedd375..32cb53d 100644
--- a/other/data/security/http/security-http-deny-reqheader-prefix-data.yaml
+++ b/other/data/security/http/security-http-deny-reqheader-prefix-data.yaml
@@ -1,9 +1,9 @@
#注意keywordArray下的关键字必须为数组形式
-"deny-reqheader-prefix_data":
+"deny-reset-update-block403-reqheader-prefix_data":
-
"opAction": "add"
"returnData": 1
- "policyName": "security-http-deny-reqheader-prefix-001"
+ "policyName": "security-http-deny-reset-update-block403-reqheader-prefix-1"
"policyType": "tsg_security"
"logType": "security_event"
"action": "deny"
@@ -44,7 +44,7 @@
-
"opAction": "update"
"returnData": 1
- "policyName": "security-http-deny-reqheader-prefix-001-1"
+ "policyName": "security-http-deny-reset-update-block403-reqheader-prefix-2"
"policyType": "tsg_security"
"logType": "security_event"
"action": "deny"
@@ -85,10 +85,11 @@
- "keywordArray":
- "Mozilla/5.0*"
"district": "User-Agent"
+"deny-block404-reqheader-prefix_data":
-
"opAction": "add"
"returnData": 1
- "policyName": "security-http-deny-reqheader-prefix-001-2"
+ "policyName": "security-http-deny-block404-reqheader-prefix"
"policyType": "tsg_security"
"logType": "security_event"
"action": "deny"
@@ -128,10 +129,11 @@
- "keywordArray":
- "Mozilla/5.0*"
"district": "User-Agent"
+"deny-alert200-update-204-reqheader-prefix_data":
-
"opAction": "add"
"returnData": 1
- "policyName": "security-http-deny-reqheader-prefix-002"
+ "policyName": "security-http-deny-alert200-update-204-reqheader-prefix-1"
"policyType": "tsg_security"
"logType": "security_event"
"action": "deny"
@@ -174,7 +176,7 @@
-
"opAction": "update"
"returnData": 1
- "policyName": "security-http-deny-reqheader-prefix-002-1"
+ "policyName": "security-http-deny-alert200-update-204-reqheader-prefix-2"
"policyType": "tsg_security"
"logType": "security_event"
"action": "deny"
@@ -215,10 +217,11 @@
- "keywordArray":
- "Mozilla/5.0*"
"district": "User-Agent"
+"deny-rate-limit-update-big-reqheader-prefix_data":
-
"opAction": "add"
"returnData": 1
- "policyName": "security-http-deny-reqheader-prefix-003"
+ "policyName": "security-http-deny-rate-limit-update-big-reqheader-prefix-1"
"policyType": "tsg_security"
"logType": "security_event"
"action": "deny"
@@ -260,7 +263,7 @@
-
"opAction": "update"
"returnData": 1
- "policyName": "security-http-deny-reqheader-prefix-003-1"
+ "policyName": "security-http-deny-rate-limit-update-big-reqheader-prefix-2"
"policyType": "tsg_security"
"logType": "security_event"
"action": "deny"
@@ -300,10 +303,11 @@
- "keywordArray":
- "Mozilla/5.0*"
"district": "User-Agent"
+"deny-tamper-reqheader-prefix_data":
-
"opAction": "add"
"returnData": 1
- "policyName": "security-http-deny-reqheader-prefix-004"
+ "policyName": "security-http-deny-tamper-reqheader-prefix"
"policyType": "tsg_security"
"logType": "security_event"
"action": "deny"
diff --git a/other/data/security/http/security-http-deny-reqheader-substring-data.yaml b/other/data/security/http/security-http-deny-reqheader-substring-data.yaml
index 3126a2f..a35de6c 100644
--- a/other/data/security/http/security-http-deny-reqheader-substring-data.yaml
+++ b/other/data/security/http/security-http-deny-reqheader-substring-data.yaml
@@ -1,9 +1,9 @@
#注意keywordArray下的关键字必须为数组形式
-"deny-reqheader-substring_data":
+"deny-reset-update-block403-substring_data":
-
"opAction": "add"
"returnData": 1
- "policyName": "security-http-deny-reqheader-substring-001"
+ "policyName": "security-http-deny-reset-update-block403-substring-1"
"policyType": "tsg_security"
"logType": "security_event"
"action": "deny"
@@ -44,7 +44,7 @@
-
"opAction": "update"
"returnData": 1
- "policyName": "security-http-deny-reqheader-substring-001-1"
+ "policyName": "security-http-deny-reset-update-block403-substring-2"
"policyType": "tsg_security"
"logType": "security_event"
"action": "deny"
@@ -86,10 +86,11 @@
- "504850534553534944"
"district": "Cookie"
"isHexbin": 1
+"deny-block404-reqheader-substring_data":
-
"opAction": "add"
"returnData": 1
- "policyName": "security-http-deny-reqheader-substring-001-2"
+ "policyName": "security-http-deny-block404-reqheader-substring"
"policyType": "tsg_security"
"logType": "security_event"
"action": "deny"
@@ -129,10 +130,11 @@
- "keywordArray":
- "PHPSESSID"
"district": "Cookie"
+"deny-alert200-update-204-reqheader-substring_data":
-
"opAction": "add"
"returnData": 1
- "policyName": "security-http-deny-reqheader-substring-002"
+ "policyName": "security-http-deny-alert200-update-204-reqheader-substring-1"
"policyType": "tsg_security"
"logType": "security_event"
"action": "deny"
@@ -175,7 +177,7 @@
-
"opAction": "update"
"returnData": 1
- "policyName": "security-http-deny-reqheader-substring-002-1"
+ "policyName": "security-http-deny-alert200-update-204-reqheader-substring-2"
"policyType": "tsg_security"
"logType": "security_event"
"action": "deny"
@@ -216,10 +218,11 @@
- "keywordArray":
- "PHPSESSID"
"district": "Cookie"
+"deny-rate-limit-update-big-reqheader-substring_data":
-
"opAction": "add"
"returnData": 1
- "policyName": "security-http-deny-reqheader-substring-003"
+ "policyName": "security-http-deny-rate-limit-update-big-reqheader-substring-1"
"policyType": "tsg_security"
"logType": "security_event"
"action": "deny"
@@ -261,7 +264,7 @@
-
"opAction": "update"
"returnData": 1
- "policyName": "security-http-deny-reqheader-substring-003-1"
+ "policyName": "security-http-deny-rate-limit-update-big-reqheader-substring-2"
"policyType": "tsg_security"
"logType": "security_event"
"action": "deny"
diff --git a/other/data/security/http/security-http-deny-resheader-prefix-data.yaml b/other/data/security/http/security-http-deny-resheader-prefix-data.yaml
index 8ebffb7..d210773 100644
--- a/other/data/security/http/security-http-deny-resheader-prefix-data.yaml
+++ b/other/data/security/http/security-http-deny-resheader-prefix-data.yaml
@@ -1,9 +1,9 @@
#注意keywordArray下的关键字必须为数组形式
-"deny-resheader-prefix_data":
+"deny-reset-resheader-prefix_data":
-
"opAction": "add"
"returnData": 1
- "policyName": "security-http-deny-reqheader-prefix-001"
+ "policyName": "security-http-deny-reset-resheader-prefix"
"policyType": "tsg_security"
"logType": "security_event"
"action": "deny"
@@ -40,11 +40,12 @@
- "addItemList":
- "keywordArray":
- "*html"
- "district": "Content-Type"
+ "district": "Content-Type"
+"deny-rate-limit-update-big-resheader-prefix_data":
-
"opAction": "add"
"returnData": 1
- "policyName": "security-http-deny-reqheader-prefix-003"
+ "policyName": "security-http-deny-rate-limit-update-big-resheader-prefix-1"
"policyType": "tsg_security"
"logType": "security_event"
"action": "deny"
@@ -86,7 +87,7 @@
-
"opAction": "update"
"returnData": 1
- "policyName": "security-http-deny-reqheader-prefix-003-1"
+ "policyName": "security-http-deny-rate-limit-update-big-resheader-prefix-2"
"policyType": "tsg_security"
"logType": "security_event"
"action": "deny"
diff --git a/other/data/security/http/security-http-deny-resheader-substring-data.yaml b/other/data/security/http/security-http-deny-resheader-substring-data.yaml
index 2e6832d..9548208 100644
--- a/other/data/security/http/security-http-deny-resheader-substring-data.yaml
+++ b/other/data/security/http/security-http-deny-resheader-substring-data.yaml
@@ -1,9 +1,9 @@
#注意keywordArray下的关键字必须为数组形式
-"deny-resheader-substring_data":
+"deny-reset-update-tamper-resheader-substring_data":
-
"opAction": "add"
"returnData": 1
- "policyName": "security-http-deny-reqheader-substring-001"
+ "policyName": "security-http-deny-reset-update-tamper-resheader-substring-1"
"policyType": "tsg_security"
"logType": "security_event"
"action": "deny"
@@ -44,7 +44,7 @@
-
"opAction": "update"
"returnData": 1
- "policyName": "security-http-deny-reqheader-substring-001-1"
+ "policyName": "security-http-deny-reset-update-tamper-resheader-substring-2"
"policyType": "tsg_security"
"logType": "security_event"
"action": "deny"
@@ -82,11 +82,12 @@
- "addItemList":
- "keywordArray":
- "utf-8"
- "district": "Content-Type"
+ "district": "Content-Type"
+"deny-rate-limit-update-big-resheader-substring_data":
-
"opAction": "add"
"returnData": 1
- "policyName": "security-http-deny-reqheader-substring-003"
+ "policyName": "security-http-deny-rate-limit-update-big-resheader-substring-1"
"policyType": "tsg_security"
"logType": "security_event"
"action": "deny"
@@ -128,7 +129,7 @@
-
"opAction": "update"
"returnData": 1
- "policyName": "security-http-deny-reqheader-substring-003-1"
+ "policyName": "security-http-deny-rate-limit-update-big-resheader-substring-2"
"policyType": "tsg_security"
"logType": "security_event"
"action": "deny"
diff --git a/other/data/security/http/security-http-deny-url-exactly-data.yaml b/other/data/security/http/security-http-deny-url-exactly-data.yaml
index 9070092..1bc34a9 100644
--- a/other/data/security/http/security-http-deny-url-exactly-data.yaml
+++ b/other/data/security/http/security-http-deny-url-exactly-data.yaml
@@ -163,4 +163,50 @@
"objectList":
- "addItemList":
- "keywordArray":
- - "$poplar.ru/" \ No newline at end of file
+ - "$poplar.ru/"
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-http-deny-url-exactly-003-1"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "action": "deny"
+ "method": "rate_limit"
+ "bps": 10000000
+ "isGre": 0
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 1
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "http"
+ "appIdObjects":
+ - "http"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "logCapture": 1
+ "captureDepth": 4039
+ "testMachine":
+ -
+ "hopeSuccessNumber": 1
+ "command": "curl --connect-timeout 10 -m 10 http://www.bjnews.com.cn/education"
+ "commandRes": "timed out"
+ "logQueryParam":
+ -
+ "queryFiledKey": "http_host"
+ "queryValue": "www.bjnews.com.cn"
+ -
+ "queryFiledKey": "common_packet_capture_file"
+ "queryValue": "hostip"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_HTTP_URL"
+ "objectType": "url"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "$www.bjnews.com.cn/education" \ No newline at end of file
diff --git a/other/data/security/http/security-http-deny-url-exactly.yaml b/other/data/security/http/security-http-deny-url-exactly.yaml
index 4f6c065..71154b7 100644
--- a/other/data/security/http/security-http-deny-url-exactly.yaml
+++ b/other/data/security/http/security-http-deny-url-exactly.yaml
@@ -1,9 +1,9 @@
#注意keywordArray下的关键字必须为数组形式
-"deny-url-exactly_data":
+"deny-reset-update-block403-url-exactly_data":
-
"opAction": "add"
"returnData": 1
- "policyName": "security-http-deny-url-exactly-001"
+ "policyName": "security-http-deny-reset-update-block403-url-exactly-1"
"policyType": "tsg_security"
"logType": "security_event"
"action": "deny"
@@ -43,7 +43,7 @@
-
"opAction": "update"
"returnData": 1
- "policyName": "security-http-deny-url-exactly-001-1"
+ "policyName": "security-http-deny-reset-update-block403-url-exactly-2"
"policyType": "tsg_security"
"logType": "security_event"
"action": "deny"
@@ -83,6 +83,7 @@
- "addItemList":
- "keywordArray":
- "$poplar.ru/"
+"deny-block404-url-exactly_data":
-
"opAction": "add"
"returnData": 1
@@ -125,6 +126,7 @@
- "addItemList":
- "keywordArray":
- "$poplar.ru/"
+"deny-alert200-update-204-url-exactly_data":
-
"opAction": "add"
"returnData": 1
@@ -210,10 +212,11 @@
- "addItemList":
- "keywordArray":
- "$poplar.ru/"
+"deny-rate-limit-update-big-url-exactly_data":
-
"opAction": "add"
"returnData": 1
- "policyName": "security-http-deny-url-exactly-003"
+ "policyName": "security-http-deny-rate-limit-update-big-url-exactly-1"
"policyType": "tsg_security"
"logType": "security_event"
"action": "deny"
@@ -254,7 +257,7 @@
-
"opAction": "update"
"returnData": 1
- "policyName": "security-http-deny-url-exactly-003-1"
+ "policyName": "security-http-deny-rate-limit-update-big-url-exactly-2"
"policyType": "tsg_security"
"logType": "security_event"
"action": "deny"
@@ -292,11 +295,12 @@
"objectList":
- "addItemList":
- "keywordArray":
- - "$poplar.ru/"
+ - "$poplar.ru/"
+"deny-redirect303-url-exactly_data":
-
"opAction": "add"
"returnData": 1
- "policyName": "security-http-deny-url-exactly-004"
+ "policyName": "security-http-deny-redirect303-url-exactly"
"policyType": "tsg_security"
"logType": "security_event"
"action": "deny"
diff --git a/other/data/security/http/security-http-deny-url-prefix-data.yaml b/other/data/security/http/security-http-deny-url-prefix-data.yaml
index bc4df0d..dfaa8bf 100644
--- a/other/data/security/http/security-http-deny-url-prefix-data.yaml
+++ b/other/data/security/http/security-http-deny-url-prefix-data.yaml
@@ -1,9 +1,9 @@
#注意keywordArray下的关键字必须为数组形式
-"deny-url-prefix_data":
+"deny-reset-update-block403-url-prefix_data":
-
"opAction": "add"
"returnData": 1
- "policyName": "security-http-deny-url-prefix-001"
+ "policyName": "security-http-deny-reset-update-block403-url-prefix-1"
"policyType": "tsg_security"
"logType": "security_event"
"action": "deny"
@@ -43,7 +43,7 @@
-
"opAction": "update"
"returnData": 1
- "policyName": "security-http-deny-url-prefix-001-1"
+ "policyName": "security-http-deny-reset-update-block403-url-prefix-2"
"policyType": "tsg_security"
"logType": "security_event"
"action": "deny"
@@ -83,10 +83,11 @@
- "addItemList":
- "keywordArray":
- "www.shorthills*"
+"deny-block404-url-prefix_data":
-
"opAction": "add"
"returnData": 1
- "policyName": "security-http-deny-url-prefix-001-2"
+ "policyName": "security-http-deny-block404-url-prefix"
"policyType": "tsg_security"
"logType": "security_event"
"action": "deny"
@@ -125,10 +126,11 @@
- "addItemList":
- "keywordArray":
- "www.shorthills*"
+"deny-alert200-update-204-url-prefix_data":
-
"opAction": "add"
"returnData": 1
- "policyName": "security-http-deny-url-prefix-002"
+ "policyName": "security-http-deny-alert200-update-204-url-prefix-1"
"policyType": "tsg_security"
"logType": "security_event"
"action": "deny"
@@ -170,7 +172,7 @@
-
"opAction": "update"
"returnData": 1
- "policyName": "security-http-deny-url-prefix-002-1"
+ "policyName": "security-http-deny-alert200-update-204-url-prefix-2"
"policyType": "tsg_security"
"logType": "security_event"
"action": "deny"
@@ -210,10 +212,11 @@
- "addItemList":
- "keywordArray":
- "www.shorthills*"
+"deny-rate-limit-update-big-url-prefix_data":
-
"opAction": "add"
"returnData": 1
- "policyName": "security-http-deny-url-prefix-003"
+ "policyName": "security-http-deny-rate-limit-update-big-url-prefix-1"
"policyType": "tsg_security"
"logType": "security_event"
"action": "deny"
@@ -254,7 +257,7 @@
-
"opAction": "update"
"returnData": 1
- "policyName": "security-http-deny-url-prefix-003-1"
+ "policyName": "security-http-deny-rate-limit-update-big-url-prefix-2"
"policyType": "tsg_security"
"logType": "security_event"
"action": "deny"
@@ -292,11 +295,12 @@
"objectList":
- "addItemList":
- "keywordArray":
- - "www.shorthills*"
+ - "www.shorthills*"
+"deny-redirect303-url-prefix_data":
-
"opAction": "add"
"returnData": 1
- "policyName": "security-http-deny-url-prefix-004"
+ "policyName": "security-http-deny-redirect303-url-prefix"
"policyType": "tsg_security"
"logType": "security_event"
"action": "deny"
diff --git a/other/data/security/http/security-http-deny-url-resbody-substring-data.yaml b/other/data/security/http/security-http-deny-url-resbody-substring-data.yaml
index 3cbf3bc..dfa0d5f 100644
--- a/other/data/security/http/security-http-deny-url-resbody-substring-data.yaml
+++ b/other/data/security/http/security-http-deny-url-resbody-substring-data.yaml
@@ -1,9 +1,9 @@
#注意keywordArray下的关键字必须为数组形式
-"deny-url-resbody-substring_data":
+"deny-url-reset-resbody-substring_data":
-
"opAction": "add"
"returnData": 1
- "policyName": "security-http-deny-url-resbody-substring-001"
+ "policyName": "security-http-deny-url-reset-resbody-substring"
"policyType": "tsg_security"
"logType": "security_event"
"action": "deny"
@@ -48,10 +48,11 @@
- "addItemList":
- "keywordArray":
- "工具"
+"deny-url-rate-little-resbody-substring_data":
-
"opAction": "add"
"returnData": 1
- "policyName": "security-http-deny-url-resbody-substring-002"
+ "policyName": "security-http-deny-url-rate-little-resbody-substring"
"policyType": "tsg_security"
"logType": "security_event"
"action": "deny"
@@ -97,10 +98,11 @@
- "addItemList":
- "keywordArray":
- "工具"
+"deny-url-rate-big-resbody-substring_data":
-
"opAction": "add"
"returnData": 1
- "policyName": "security-http-deny-url-resbody-substring-003"
+ "policyName": "security-http-deny-url-rate-big-resbody-substring"
"policyType": "tsg_security"
"logType": "security_event"
"action": "deny"
diff --git a/other/data/security/http/security-http-deny-url-substring-data.yaml b/other/data/security/http/security-http-deny-url-substring-data.yaml
index cfaa0e1..1eeee9e 100644
--- a/other/data/security/http/security-http-deny-url-substring-data.yaml
+++ b/other/data/security/http/security-http-deny-url-substring-data.yaml
@@ -1,9 +1,9 @@
#注意keywordArray下的关键字必须为数组形式
-"deny-url-substring_data":
+"deny-reset-update-block403-url-substring_data":
-
"opAction": "add"
"returnData": 1
- "policyName": "security-http-deny-url-substring-001"
+ "policyName": "security-http-deny-reset-update-block403-url-substring-1"
"policyType": "tsg_security"
"logType": "security_event"
"action": "deny"
@@ -43,7 +43,7 @@
-
"opAction": "update"
"returnData": 1
- "policyName": "security-http-deny-url-substring-001-1"
+ "policyName": "security-http-deny-reset-update-block403-url-substring-2"
"policyType": "tsg_security"
"logType": "security_event"
"action": "deny"
@@ -83,10 +83,11 @@
- "addItemList":
- "keywordArray":
- "pricing"
+"deny-block404-url-prefix-substring_data":
-
"opAction": "add"
"returnData": 1
- "policyName": "security-http-deny-url-substring-001-2"
+ "policyName": "security-http-deny-block404-url-prefix-substring"
"policyType": "tsg_security"
"logType": "security_event"
"action": "deny"
@@ -125,10 +126,11 @@
- "addItemList":
- "keywordArray":
- "pricing"
+"deny-alert200-update-204-url-substring_data":
-
"opAction": "add"
"returnData": 1
- "policyName": "security-http-deny-url-substring-002"
+ "policyName": "security-http-deny-alert200-update-204-url-substring-1"
"policyType": "tsg_security"
"logType": "security_event"
"action": "deny"
@@ -170,7 +172,7 @@
-
"opAction": "update"
"returnData": 1
- "policyName": "security-http-deny-url-substring-002-1"
+ "policyName": "security-http-deny-alert200-update-204-url-substring-2"
"policyType": "tsg_security"
"logType": "security_event"
"action": "deny"
@@ -210,10 +212,11 @@
- "addItemList":
- "keywordArray":
- "pricing"
+"deny-rate-limit-update-big-url-substring_data":
-
"opAction": "add"
"returnData": 1
- "policyName": "security-http-deny-url-substring-003"
+ "policyName": "security-http-deny-rate-limit-update-big-url-substring-1"
"policyType": "tsg_security"
"logType": "security_event"
"action": "deny"
@@ -254,7 +257,7 @@
-
"opAction": "update"
"returnData": 1
- "policyName": "security-http-deny-url-substring-003-1"
+ "policyName": "security-http-deny-rate-limit-update-big-url-substring-2"
"policyType": "tsg_security"
"logType": "security_event"
"action": "deny"
@@ -293,10 +296,11 @@
- "addItemList":
- "keywordArray":
- "pricing"
+"deny-redirect303-url-substring_data":
-
"opAction": "add"
"returnData": 1
- "policyName": "security-http-deny-url-substring-004"
+ "policyName": "security-http-deny-redirect303-url-substring"
"policyType": "tsg_security"
"logType": "security_event"
"action": "deny"
diff --git a/other/data/security/http/security-http-deny-url-suffix-data.yaml b/other/data/security/http/security-http-deny-url-suffix-data.yaml
index 2fd1228..ce88ca8 100644
--- a/other/data/security/http/security-http-deny-url-suffix-data.yaml
+++ b/other/data/security/http/security-http-deny-url-suffix-data.yaml
@@ -1,9 +1,9 @@
#注意keywordArray下的关键字必须为数组形式
-"deny-url-suffix_data":
+"deny-reset-update-block403-url-suffix_data":
-
"opAction": "add"
"returnData": 1
- "policyName": "security-http-deny-url-suffix-001"
+ "policyName": "security-http-deny-reset-update-block403-url-suffix-1"
"policyType": "tsg_security"
"logType": "security_event"
"action": "deny"
@@ -43,7 +43,7 @@
-
"opAction": "update"
"returnData": 1
- "policyName": "security-http-deny-url-suffix-001-1"
+ "policyName": "security-http-deny-reset-update-block403-url-suffix-2"
"policyType": "tsg_security"
"logType": "security_event"
"action": "deny"
@@ -83,10 +83,11 @@
- "addItemList":
- "keywordArray":
- "*lar.ru/"
+"deny-block404-url-suffix_data":
-
"opAction": "add"
"returnData": 1
- "policyName": "security-http-deny-url-suffix-001-2"
+ "policyName": "security-http-deny-block404-url-suffix"
"policyType": "tsg_security"
"logType": "security_event"
"action": "deny"
@@ -125,10 +126,11 @@
- "addItemList":
- "keywordArray":
- "*lar.ru/"
+"deny-alert200-update-204-url-suffix_data":
-
"opAction": "add"
"returnData": 1
- "policyName": "security-http-deny-url-suffix-002"
+ "policyName": "security-http-deny-alert200-update-204-url-suffix-1"
"policyType": "tsg_security"
"logType": "security_event"
"action": "deny"
@@ -170,7 +172,7 @@
-
"opAction": "update"
"returnData": 1
- "policyName": "security-http-deny-url-suffix-002-1"
+ "policyName": "security-http-deny-alert200-update-204-url-suffix-2"
"policyType": "tsg_security"
"logType": "security_event"
"action": "deny"
@@ -210,10 +212,11 @@
- "addItemList":
- "keywordArray":
- "*lar.ru/"
+"deny-rate-limit-update-big-url-suffix_data":
-
"opAction": "add"
"returnData": 1
- "policyName": "security-http-deny-url-suffix-003"
+ "policyName": "security-http-deny-rate-limit-update-big-url-suffix-1"
"policyType": "tsg_security"
"logType": "security_event"
"action": "deny"
@@ -255,7 +258,7 @@
"opAction": "update"
"isEdit": 1
"returnData": 1
- "policyName": "security-http-deny-url-suffix-003-1"
+ "policyName": "security-http-deny-rate-limit-update-big-url-suffix-2"
"policyType": "tsg_security"
"logType": "security_event"
"action": "deny"
@@ -292,11 +295,12 @@
"objectList":
- "addItemList":
- "keywordArray":
- - "*lar.ru/"
+ - "*lar.ru/"
+"deny-redirect303-url-suffix_data":
-
"opAction": "add"
"returnData": 1
- "policyName": "security-http-deny-url-suffix-004"
+ "policyName": "security-http-deny-redirect303-url-suffix"
"policyType": "tsg_security"
"logType": "security_event"
"action": "deny"
diff --git a/other/data/security/http/security-http-monitor-fqdn-url-reqheader-resheader-reqbody-resbody-data.yaml b/other/data/security/http/security-http-monitor-fqdn-url-reqheader-resheader-reqbody-resbody-data.yaml
index d18e520..31878fb 100644
--- a/other/data/security/http/security-http-monitor-fqdn-url-reqheader-resheader-reqbody-resbody-data.yaml
+++ b/other/data/security/http/security-http-monitor-fqdn-url-reqheader-resheader-reqbody-resbody-data.yaml
@@ -74,7 +74,7 @@
"objectList":
- "addItemList":
- "keywordArray":
- - "SecurityTest"
+ - "SecurityTes"
-
"protocolField": "TSG_FIELD_HTTP_REQ_BODY"
"objectType": "keywords"
diff --git a/other/data/security/http/security-http-monitor-http-log-verify-data.yaml b/other/data/security/http/security-http-monitor-http-log-verify-data.yaml
new file mode 100644
index 0000000..c512e83
--- /dev/null
+++ b/other/data/security/http/security-http-monitor-http-log-verify-data.yaml
@@ -0,0 +1,160 @@
+#注意keywordArray下的关键字必须为数组形式
+"monitor-http-log-verify_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "monitor-http-log-verify-0001"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "action": "monitor"
+ "packet_mirror":
+ "enable": 0
+ "isGre": 0
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 1
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "http"
+ "appIdObjects":
+ - "http"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "hopeSuccessNumber": 1
+ "command": 'curl --connect-timeout 5 -m 10 --cookie "PHPSESSID=f5c90374a050d9b223583d6852863fec" -H "Content-Type:application/json;charset=UTF-8" -X POST -d "{\"requestbody\":\"SecurityTest\",\"setcook\":\"asdf\",\"contenttype\": \"charset\",\"responsebody\": \"adzx\"}" -kv --user-agent "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.70 Safari/537.36" http://open.node.com:180/go | iconv -f utf-8 -t gbk'
+ "commandRes": "SecurityTest"
+ "logQueryParam":
+ -
+ "queryFiledKey": "http_host"
+ "queryValue": "open.node.com"
+ -
+ "queryFiledKey": "http_url"
+ "queryValue": "open.node.com:180/go"
+ -
+ "queryFiledKey": "http_user_agent"
+ "queryValue": "Mozilla/5.0"
+ -
+ "queryFiledKey": "http_request_content_length"
+ "queryValue": "95"
+ -
+ "queryFiledKey": "http_request_content_type"
+ "queryValue": "application"
+ -
+ "queryFiledKey": "http_set_cookie"
+ "queryValue": "JSESSIONID"
+ -
+ "queryFiledKey": "http_version"
+ "queryValue": "http1"
+ -
+ "queryFiledKey": "http_response_latency_ms"
+ "queryValue": "notEmpty"
+ -
+ "queryFiledKey": "http_response_body"
+ "queryValue": "notEmpty"
+ -
+ "queryFiledKey": "http_session_duration_ms"
+ "queryValue": "notEmpty"
+ -
+ "queryFiledKey": "http_action_file_size"
+ "queryValue": "notEmpty"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_HTTP_HOST"
+ "objectType": "fqdn"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "*open.node.com"
+ -
+ "protocolField": "TSG_FIELD_HTTP_URL"
+ "objectType": "url"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "open.node"
+ -
+ "protocolField": "TSG_FIELD_HTTP_REQ_HDR"
+ "objectType": "http_signature"
+ "objectSubType": "User-Agent"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "Mozilla/5.0*"
+ "district": "User-Agent"
+ -
+ "protocolField": "TSG_FIELD_HTTP_RES_HDR"
+ "objectType": "http_signature"
+ "objectSubType": "Content-Type"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "*utf-8"
+ "district": "Content-Type"
+ -
+ "protocolField": "TSG_FIELD_HTTP_REQ_BODY"
+ "objectType": "keywords"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "SecurityTest"
+ -
+ "protocolField": "TSG_FIELD_HTTP_REQ_BODY"
+ "objectType": "keywords"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "ecurityTest"
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "monitor-http-log-verify-only-metalog"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "action": "monitor"
+ "packet_mirror":
+ "enable": 0
+ "isGre": 0
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 2
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "http"
+ "appIdObjects":
+ - "http"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "hopeSuccessNumber": 1
+ "command": 'curl --connect-timeout 5 -m 10 --cookie "PHPSESSID=f5c90374a050d9b223583d6852863fec" -H "Content-Type:application/json;charset=UTF-8" -X POST -d "{\"requestbody\":\"logVerify\",\"setcook\":\"asdf\",\"contenttype\": \"charset\",\"responsebody\": \"adzx\"}" -kv --user-agent "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.70 Safari/537.36" http://open.node.com:180/go | iconv -f utf-8 -t gbk'
+ "commandRes": "logVerify"
+ "logQueryParam":
+ -
+ "queryFiledKey": "http_request_body"
+ "queryValue": "empty"
+ -
+ "queryFiledKey": "http_response_body"
+ "queryValue": "empty"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_HTTP_REQ_BODY"
+ "objectType": "keywords"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "logVerify"
+ \ No newline at end of file
diff --git a/other/data/security/http/security-http-monitor-url-exactly-data.yaml b/other/data/security/http/security-http-monitor-url-exactly-data.yaml
index bb8934c..8a17ece 100644
--- a/other/data/security/http/security-http-monitor-url-exactly-data.yaml
+++ b/other/data/security/http/security-http-monitor-url-exactly-data.yaml
@@ -24,12 +24,12 @@
"testMachine":
-
"hopeSuccessNumber": 1
- "command": "wget -q -O- http://crosswordheaven.com/search"
- "commandRes": "Crossword Heaven"
+ "command": "wget -q -O- http://www.proxytrade.info/"
+ "commandRes": "Votre domaine"
"logQueryParam":
-
"queryFiledKey": "http_host"
- "queryValue": "crosswordheaven.com"
+ "queryValue": "www.proxytrade.info"
"isValid": 1
"scheduleId":
"condation":
@@ -40,4 +40,4 @@
"objectList":
- "addItemList":
- "keywordArray":
- - "$crosswordheaven.com/search" \ No newline at end of file
+ - "$www.proxytrade.info/" \ No newline at end of file
diff --git a/other/data/security/http/security-http-monitor-url-prefix-data.yaml b/other/data/security/http/security-http-monitor-url-prefix-data.yaml
index a0e9dbc..087ddbe 100644
--- a/other/data/security/http/security-http-monitor-url-prefix-data.yaml
+++ b/other/data/security/http/security-http-monitor-url-prefix-data.yaml
@@ -24,12 +24,12 @@
"testMachine":
-
"hopeSuccessNumber": 1
- "command": "wget -q -O- http://davidsmithhunting.com/"
- "commandRes": "David Smith"
+ "command": "wget -q -O- http://www.nuk-baby.ru/ru_ru/kollekcii/disney-mickey-mouse.html"
+ "commandRes": "Disney Mickey Mouse"
"logQueryParam":
-
"queryFiledKey": "http_host"
- "queryValue": "davidsmithhunting.com"
+ "queryValue": "www.nuk-baby.ru"
"isValid": 1
"scheduleId":
"condation":
@@ -40,4 +40,4 @@
"objectList":
- "addItemList":
- "keywordArray":
- - "davids*" \ No newline at end of file
+ - "www.nuk-*" \ No newline at end of file
diff --git a/other/data/security/http/security-http-monitor-url-substring-data.yaml b/other/data/security/http/security-http-monitor-url-substring-data.yaml
index 273026f..96a9eed 100644
--- a/other/data/security/http/security-http-monitor-url-substring-data.yaml
+++ b/other/data/security/http/security-http-monitor-url-substring-data.yaml
@@ -24,12 +24,12 @@
"testMachine":
-
"hopeSuccessNumber": 1
- "command": "wget -q -O- http://davidsmithhunting.com/"
- "commandRes": "David Smith"
+ "command": "wget -q -O- http://www.proxytrade.info/"
+ "commandRes": "Votre domaine"
"logQueryParam":
-
"queryFiledKey": "http_host"
- "queryValue": "davidsmithhunting.com"
+ "queryValue": "www.proxytrade.info"
"isValid": 1
"scheduleId":
"condation":
@@ -40,4 +40,4 @@
"objectList":
- "addItemList":
- "keywordArray":
- - "davids" \ No newline at end of file
+ - "proxytrade" \ No newline at end of file
diff --git a/other/data/security/mail/security-mail-allow-account-excatly-data.yaml b/other/data/security/mail/security-mail-allow-account-excatly-data.yaml
new file mode 100644
index 0000000..8e050d8
--- /dev/null
+++ b/other/data/security/mail/security-mail-allow-account-excatly-data.yaml
@@ -0,0 +1,46 @@
+#注意keywordArray下的关键字必须为数组形式
+"allow-account-exactly_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-mail-allow-account-exactly-0001"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "isGre": 0
+ "action": "allow"
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 1
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "mail"
+ "appIdObjects":
+ - "mail"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "smtpServer": "default"
+ "mailFrom": "default"
+ "mailTo": "[email protected]"
+ "mailPassword": "default"
+ "mailMessagePath" : "/mailTestFile/mailMessage/subjectEnglish.txt"
+ "mailAttachPath" : "/mailTestFile/mailAttach/mail_test_english.txt"
+ "hopeResult": "root"
+ "hopeSuccessNumber": 1
+ "logQueryParam":
+ -
+ "queryFiledKey": "mail_account"
+ "queryValue": "[email protected]"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_MAIL_ACCOUNT"
+ "objectType": "account"
+ "objectSubType": "account"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "[email protected]" \ No newline at end of file
diff --git a/other/data/security/mail/security-mail-allow-account-prefix-data.yaml b/other/data/security/mail/security-mail-allow-account-prefix-data.yaml
new file mode 100644
index 0000000..4aaace7
--- /dev/null
+++ b/other/data/security/mail/security-mail-allow-account-prefix-data.yaml
@@ -0,0 +1,46 @@
+#注意keywordArray下的关键字必须为数组形式
+"allow-account-prefix_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-mail-allow-account-prefix-0001"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "isGre": 0
+ "action": "allow"
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 1
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "mail"
+ "appIdObjects":
+ - "mail"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "smtpServer": "default"
+ "mailFrom": "default"
+ "mailTo": "[email protected]"
+ "mailPassword": "default"
+ "mailMessagePath" : "/mailTestFile/mailMessage/subjectEnglish.txt"
+ "mailAttachPath" : "/mailTestFile/mailAttach/mail_test_english.txt"
+ "hopeResult": "root"
+ "hopeSuccessNumber": 1
+ "logQueryParam":
+ -
+ "queryFiledKey": "mail_account"
+ "queryValue": "[email protected]"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_MAIL_ACCOUNT"
+ "objectType": "account"
+ "objectSubType": "account"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "hbn@16*" \ No newline at end of file
diff --git a/other/data/security/mail/security-mail-allow-account-substring-data.yaml b/other/data/security/mail/security-mail-allow-account-substring-data.yaml
new file mode 100644
index 0000000..b069d84
--- /dev/null
+++ b/other/data/security/mail/security-mail-allow-account-substring-data.yaml
@@ -0,0 +1,46 @@
+#注意keywordArray下的关键字必须为数组形式
+"allow-account-substring_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-mail-allow-account-substring-0001"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "isGre": 0
+ "action": "allow"
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 1
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "mail"
+ "appIdObjects":
+ - "mail"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "smtpServer": "default"
+ "mailFrom": "default"
+ "mailTo": "[email protected]"
+ "mailPassword": "default"
+ "mailMessagePath" : "/mailTestFile/mailMessage/subjectEnglish.txt"
+ "mailAttachPath" : "/mailTestFile/mailAttach/mail_test_english.txt"
+ "hopeResult": "root"
+ "hopeSuccessNumber": 1
+ "logQueryParam":
+ -
+ "queryFiledKey": "mail_account"
+ "queryValue": "[email protected]"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_MAIL_ACCOUNT"
+ "objectType": "account"
+ "objectSubType": "account"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "163.com" \ No newline at end of file
diff --git a/other/data/security/mail/security-mail-allow-account-suffix-data.yaml b/other/data/security/mail/security-mail-allow-account-suffix-data.yaml
new file mode 100644
index 0000000..d2ddb09
--- /dev/null
+++ b/other/data/security/mail/security-mail-allow-account-suffix-data.yaml
@@ -0,0 +1,48 @@
+#注意keywordArray下的关键字必须为数组形式
+"allow-account-suffix_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-mail-allow-account-suffix-0001"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "isGre": 0
+ "action": "allow"
+ "packet_mirror":
+ "enable": 0
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 1
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "mail"
+ "appIdObjects":
+ - "mail"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "smtpServer": "default"
+ "mailFrom": "default"
+ "mailTo": "[email protected]"
+ "mailPassword": "default"
+ "mailMessagePath" : "/mailTestFile/mailMessage/subjectEnglish.txt"
+ "mailAttachPath" : "/mailTestFile/mailAttach/mail_test_english.txt"
+ "hopeResult": "root"
+ "hopeSuccessNumber": 1
+ "logQueryParam":
+ -
+ "queryFiledKey": "mail_account"
+ "queryValue": "[email protected]"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_MAIL_ACCOUNT"
+ "objectType": "account"
+ "objectSubType": "account"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "*163.com" \ No newline at end of file
diff --git a/other/data/security/mail/security-mail-allow-attachmentcontent-account-data.yaml b/other/data/security/mail/security-mail-allow-attachmentcontent-account-data.yaml
new file mode 100644
index 0000000..5d3eba6
--- /dev/null
+++ b/other/data/security/mail/security-mail-allow-attachmentcontent-account-data.yaml
@@ -0,0 +1,54 @@
+#注意keywordArray下的关键字必须为数组形式
+"allow-attachmentcontent-account_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-mail-allow-attachmentcontent-account-0001"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "isGre": 0
+ "action": "allow"
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 1
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "mail"
+ "appIdObjects":
+ - "mail"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "smtpServer": "default"
+ "mailFrom": "default"
+ "mailTo": "[email protected]"
+ "mailPassword": "default"
+ "mailMessagePath" : "/mailTestFile/mailMessage/subjectEnglish.txt"
+ "mailAttachPath" : "/mailTestFile/mailAttach/mail_test_english.txt"
+ "hopeResult": "root"
+ "hopeSuccessNumber": 1
+ "logQueryParam":
+ -
+ "queryFiledKey": "mail_account"
+ "queryValue": "[email protected]"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_MAIL_ATT_CONTENT"
+ "objectType": "keywords"
+ "objectSubType": "keywords"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "halashaogusina"
+ -
+ "protocolField": "TSG_FIELD_MAIL_ACCOUNT"
+ "objectType": "account"
+ "objectSubType": "account"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "[email protected]" \ No newline at end of file
diff --git a/other/data/security/mail/security-mail-allow-attachmentcontent-from-data.yaml b/other/data/security/mail/security-mail-allow-attachmentcontent-from-data.yaml
new file mode 100644
index 0000000..c613865
--- /dev/null
+++ b/other/data/security/mail/security-mail-allow-attachmentcontent-from-data.yaml
@@ -0,0 +1,54 @@
+#注意keywordArray下的关键字必须为数组形式
+"allow-attachmentcontent-from_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-mail-allow-attachmentcontent-from-0001"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "isGre": 0
+ "action": "allow"
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 1
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "mail"
+ "appIdObjects":
+ - "mail"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "smtpServer": "default"
+ "mailFrom": "default"
+ "mailTo": "[email protected]"
+ "mailPassword": "default"
+ "mailMessagePath" : "/mailTestFile/mailMessage/subjectEnglish.txt"
+ "mailAttachPath" : "/mailTestFile/mailAttach/mail_test_english.txt"
+ "hopeResult": "root"
+ "hopeSuccessNumber": 1
+ "logQueryParam":
+ -
+ "queryFiledKey": "mail_account"
+ "queryValue": "[email protected]"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_MAIL_FROM"
+ "objectType": "account"
+ "objectSubType": "account"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "*163.com"
+ -
+ "protocolField": "TSG_FIELD_MAIL_ATT_CONTENT"
+ "objectType": "keywords"
+ "objectSubType": "keywords"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "halashaogusina"
diff --git a/other/data/security/mail/security-mail-allow-attachmentcontent-substring-data.yaml b/other/data/security/mail/security-mail-allow-attachmentcontent-substring-data.yaml
new file mode 100644
index 0000000..4b43192
--- /dev/null
+++ b/other/data/security/mail/security-mail-allow-attachmentcontent-substring-data.yaml
@@ -0,0 +1,46 @@
+#注意keywordArray下的关键字必须为数组形式
+"allow-attachmentcontent-substring_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-mail-allow-attachmentcontent-substring-0001"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "isGre": 0
+ "action": "allow"
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 1
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "mail"
+ "appIdObjects":
+ - "mail"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "smtpServer": "default"
+ "mailFrom": "default"
+ "mailTo": "[email protected]"
+ "mailPassword": "default"
+ "mailMessagePath" : "/mailTestFile/mailMessage/subjectEnglish.txt"
+ "mailAttachPath" : "/mailTestFile/mailAttach/mail_test_english.txt"
+ "hopeResult": "root"
+ "hopeSuccessNumber": 1
+ "logQueryParam":
+ -
+ "queryFiledKey": "mail_from"
+ "queryValue": "[email protected]"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_MAIL_ATT_CONTENT"
+ "objectType": "keywords"
+ "objectSubType": "keywords"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "halashaogusina" \ No newline at end of file
diff --git a/other/data/security/mail/security-mail-allow-attachmentcontent-to-data.yaml b/other/data/security/mail/security-mail-allow-attachmentcontent-to-data.yaml
new file mode 100644
index 0000000..ea40e77
--- /dev/null
+++ b/other/data/security/mail/security-mail-allow-attachmentcontent-to-data.yaml
@@ -0,0 +1,54 @@
+#注意keywordArray下的关键字必须为数组形式
+"allow-attachmentcontent-to_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-mail-allow-attachmentcontent-to-0001"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "isGre": 0
+ "action": "allow"
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 1
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "mail"
+ "appIdObjects":
+ - "mail"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "smtpServer": "default"
+ "mailFrom": "default"
+ "mailTo": "[email protected]"
+ "mailPassword": "default"
+ "mailMessagePath" : "/mailTestFile/mailMessage/subjectEnglish.txt"
+ "mailAttachPath" : "/mailTestFile/mailAttach/mail_test_english.txt"
+ "hopeResult": "root"
+ "hopeSuccessNumber": 1
+ "logQueryParam":
+ -
+ "queryFiledKey": "mail_account"
+ "queryValue": "[email protected]"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_MAIL_TO"
+ "objectType": "account"
+ "objectSubType": "account"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "[email protected]"
+ -
+ "protocolField": "TSG_FIELD_MAIL_ATT_CONTENT"
+ "objectType": "keywords"
+ "objectSubType": "keywords"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "halashaogusina"
diff --git a/other/data/security/mail/security-mail-allow-attachmentname-account-data.yaml b/other/data/security/mail/security-mail-allow-attachmentname-account-data.yaml
new file mode 100644
index 0000000..c72b606
--- /dev/null
+++ b/other/data/security/mail/security-mail-allow-attachmentname-account-data.yaml
@@ -0,0 +1,54 @@
+#注意keywordArray下的关键字必须为数组形式
+"allow-attachmentname-account_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-mail-allow-attachmentname-account-0001"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "isGre": 0
+ "action": "allow"
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 1
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "mail"
+ "appIdObjects":
+ - "mail"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "smtpServer": "default"
+ "mailFrom": "default"
+ "mailTo": "[email protected]"
+ "mailPassword": "default"
+ "mailMessagePath" : "/mailTestFile/mailMessage/subjectEnglish.txt"
+ "mailAttachPath" : "/mailTestFile/mailAttach/mail_test_english.txt"
+ "hopeResult": "root"
+ "hopeSuccessNumber": 1
+ "logQueryParam":
+ -
+ "queryFiledKey": "mail_account"
+ "queryValue": "[email protected]"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_MAIL_ATT_NAME"
+ "objectType": "keywords"
+ "objectSubType": "keywords"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "_test_english."
+ -
+ "protocolField": "TSG_FIELD_MAIL_ACCOUNT"
+ "objectType": "account"
+ "objectSubType": "account"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "[email protected]" \ No newline at end of file
diff --git a/other/data/security/mail/security-mail-allow-attachmentname-attachmentcontent-data.yaml b/other/data/security/mail/security-mail-allow-attachmentname-attachmentcontent-data.yaml
new file mode 100644
index 0000000..1a90c0a
--- /dev/null
+++ b/other/data/security/mail/security-mail-allow-attachmentname-attachmentcontent-data.yaml
@@ -0,0 +1,54 @@
+#注意keywordArray下的关键字必须为数组形式
+"allow-attachmentname-attachmentcontent_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-mail-allow-attachmentname-attachmentcontent-0001"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "isGre": 0
+ "action": "allow"
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 1
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "mail"
+ "appIdObjects":
+ - "mail"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "smtpServer": "default"
+ "mailFrom": "default"
+ "mailTo": "[email protected]"
+ "mailPassword": "default"
+ "mailMessagePath" : "/mailTestFile/mailMessage/subjectEnglish.txt"
+ "mailAttachPath" : "/mailTestFile/mailAttach/mail_test_english.txt"
+ "hopeResult": "root"
+ "hopeSuccessNumber": 1
+ "logQueryParam":
+ -
+ "queryFiledKey": "mail_account"
+ "queryValue": "[email protected]"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_MAIL_ATT_CONTENT"
+ "objectType": "keywords"
+ "objectSubType": "keywords"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "halashaogusina"
+ -
+ "protocolField": "TSG_FIELD_MAIL_ATT_NAME"
+ "objectType": "keywords"
+ "objectSubType": "keywords"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "$mail_test_english.txt"
diff --git a/other/data/security/mail/security-mail-allow-attachmentname-exactly-data.yaml b/other/data/security/mail/security-mail-allow-attachmentname-exactly-data.yaml
new file mode 100644
index 0000000..9fe2e76
--- /dev/null
+++ b/other/data/security/mail/security-mail-allow-attachmentname-exactly-data.yaml
@@ -0,0 +1,46 @@
+#注意keywordArray下的关键字必须为数组形式
+"allow-attachmentname-exactly_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-mail-allow-attachmentname-exactly-0001"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "isGre": 0
+ "action": "allow"
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 1
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "mail"
+ "appIdObjects":
+ - "mail"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "smtpServer": "default"
+ "mailFrom": "default"
+ "mailTo": "[email protected]"
+ "mailPassword": "default"
+ "mailMessagePath" : "/mailTestFile/mailMessage/subjectEnglish.txt"
+ "mailAttachPath" : "/mailTestFile/mailAttach/mail_test_english.txt"
+ "hopeResult": "root"
+ "hopeSuccessNumber": 1
+ "logQueryParam":
+ -
+ "queryFiledKey": "mail_from"
+ "queryValue": "[email protected]"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_MAIL_ATT_NAME"
+ "objectType": "keywords"
+ "objectSubType": "keywords"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "$mail_test_english.txt" \ No newline at end of file
diff --git a/other/data/security/mail/security-mail-allow-attachmentname-from-data.yaml b/other/data/security/mail/security-mail-allow-attachmentname-from-data.yaml
new file mode 100644
index 0000000..04a6a52
--- /dev/null
+++ b/other/data/security/mail/security-mail-allow-attachmentname-from-data.yaml
@@ -0,0 +1,54 @@
+#注意keywordArray下的关键字必须为数组形式
+"allow-attachmentname-from_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-mail-allow-attachmentname-from-0001"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "isGre": 0
+ "action": "allow"
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 1
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "mail"
+ "appIdObjects":
+ - "mail"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "smtpServer": "default"
+ "mailFrom": "default"
+ "mailTo": "[email protected]"
+ "mailPassword": "default"
+ "mailMessagePath" : "/mailTestFile/mailMessage/subjectEnglish.txt"
+ "mailAttachPath" : "/mailTestFile/mailAttach/mail_test_english.txt"
+ "hopeResult": "root"
+ "hopeSuccessNumber": 1
+ "logQueryParam":
+ -
+ "queryFiledKey": "mail_account"
+ "queryValue": "[email protected]"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_MAIL_FROM"
+ "objectType": "account"
+ "objectSubType": "account"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "*163.com"
+ -
+ "protocolField": "TSG_FIELD_MAIL_ATT_NAME"
+ "objectType": "keywords"
+ "objectSubType": "keywords"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "mail_test_englis*"
diff --git a/other/data/security/mail/security-mail-allow-attachmentname-prefix-data.yaml b/other/data/security/mail/security-mail-allow-attachmentname-prefix-data.yaml
new file mode 100644
index 0000000..c104695
--- /dev/null
+++ b/other/data/security/mail/security-mail-allow-attachmentname-prefix-data.yaml
@@ -0,0 +1,46 @@
+#注意keywordArray下的关键字必须为数组形式
+"allow-attachmentname-prefix_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-mail-allow-attachmentname-prefix-0001"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "isGre": 0
+ "action": "allow"
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 1
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "mail"
+ "appIdObjects":
+ - "mail"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "smtpServer": "default"
+ "mailFrom": "default"
+ "mailTo": "[email protected]"
+ "mailPassword": "default"
+ "mailMessagePath" : "/mailTestFile/mailMessage/subjectEnglish.txt"
+ "mailAttachPath" : "/mailTestFile/mailAttach/mail_test_english.txt"
+ "hopeResult": "root"
+ "hopeSuccessNumber": 1
+ "logQueryParam":
+ -
+ "queryFiledKey": "mail_from"
+ "queryValue": "[email protected]"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_MAIL_ATT_NAME"
+ "objectType": "keywords"
+ "objectSubType": "keywords"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "mail_test_englis*" \ No newline at end of file
diff --git a/other/data/security/mail/security-mail-allow-attachmentname-substring-data.yaml b/other/data/security/mail/security-mail-allow-attachmentname-substring-data.yaml
new file mode 100644
index 0000000..94297b2
--- /dev/null
+++ b/other/data/security/mail/security-mail-allow-attachmentname-substring-data.yaml
@@ -0,0 +1,46 @@
+#注意keywordArray下的关键字必须为数组形式
+"allow-attachmentname-substring_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-mail-allow-attachmentname-substring-0001"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "isGre": 0
+ "action": "allow"
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 1
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "mail"
+ "appIdObjects":
+ - "mail"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "smtpServer": "default"
+ "mailFrom": "default"
+ "mailTo": "[email protected]"
+ "mailPassword": "default"
+ "mailMessagePath" : "/mailTestFile/mailMessage/subjectEnglish.txt"
+ "mailAttachPath" : "/mailTestFile/mailAttach/mail_test_english.txt"
+ "hopeResult": "root"
+ "hopeSuccessNumber": 1
+ "logQueryParam":
+ -
+ "queryFiledKey": "mail_from"
+ "queryValue": "[email protected]"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_MAIL_ATT_NAME"
+ "objectType": "keywords"
+ "objectSubType": "keywords"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "mail_test_engl" \ No newline at end of file
diff --git a/other/data/security/mail/security-mail-allow-attachmentname-suffix-data.yaml b/other/data/security/mail/security-mail-allow-attachmentname-suffix-data.yaml
new file mode 100644
index 0000000..a6924f7
--- /dev/null
+++ b/other/data/security/mail/security-mail-allow-attachmentname-suffix-data.yaml
@@ -0,0 +1,46 @@
+#注意keywordArray下的关键字必须为数组形式
+"allow-attachmentname-suffix_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-mail-allow-attachmentname-suffix-0001"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "isGre": 0
+ "action": "allow"
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 1
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "mail"
+ "appIdObjects":
+ - "mail"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "smtpServer": "default"
+ "mailFrom": "default"
+ "mailTo": "[email protected]"
+ "mailPassword": "default"
+ "mailMessagePath" : "/mailTestFile/mailMessage/subjectEnglish.txt"
+ "mailAttachPath" : "/mailTestFile/mailAttach/mail_test_english.txt"
+ "hopeResult": "root"
+ "hopeSuccessNumber": 1
+ "logQueryParam":
+ -
+ "queryFiledKey": "mail_from"
+ "queryValue": "[email protected]"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_MAIL_ATT_NAME"
+ "objectType": "keywords"
+ "objectSubType": "keywords"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "*est_english.txt" \ No newline at end of file
diff --git a/other/data/security/mail/security-mail-allow-attachmentname-to-data.yaml b/other/data/security/mail/security-mail-allow-attachmentname-to-data.yaml
new file mode 100644
index 0000000..f876b36
--- /dev/null
+++ b/other/data/security/mail/security-mail-allow-attachmentname-to-data.yaml
@@ -0,0 +1,54 @@
+#注意keywordArray下的关键字必须为数组形式
+"allow-attachmentname-to_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-mail-allow-attachmentname-to-0001"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "isGre": 0
+ "action": "allow"
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 1
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "mail"
+ "appIdObjects":
+ - "mail"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "smtpServer": "default"
+ "mailFrom": "default"
+ "mailTo": "[email protected]"
+ "mailPassword": "default"
+ "mailMessagePath" : "/mailTestFile/mailMessage/subjectEnglish.txt"
+ "mailAttachPath" : "/mailTestFile/mailAttach/mail_test_english.txt"
+ "hopeResult": "root"
+ "hopeSuccessNumber": 1
+ "logQueryParam":
+ -
+ "queryFiledKey": "mail_account"
+ "queryValue": "[email protected]"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_MAIL_TO"
+ "objectType": "account"
+ "objectSubType": "account"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "autotest@*"
+ -
+ "protocolField": "TSG_FIELD_MAIL_ATT_NAME"
+ "objectType": "keywords"
+ "objectSubType": "keywords"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "*_english.txt" \ No newline at end of file
diff --git a/other/data/security/mail/security-mail-allow-content-attachmentcontent-data.yaml b/other/data/security/mail/security-mail-allow-content-attachmentcontent-data.yaml
new file mode 100644
index 0000000..e6bc32f
--- /dev/null
+++ b/other/data/security/mail/security-mail-allow-content-attachmentcontent-data.yaml
@@ -0,0 +1,54 @@
+#注意keywordArray下的关键字必须为数组形式
+"allow-content-attachmentcontent_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-mail-allow-content-attachmentcontent-0001"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "isGre": 0
+ "action": "allow"
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 1
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "mail"
+ "appIdObjects":
+ - "mail"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "smtpServer": "default"
+ "mailFrom": "default"
+ "mailTo": "[email protected]"
+ "mailPassword": "default"
+ "mailMessagePath" : "/mailTestFile/mailMessage/subjectEnglish.txt"
+ "mailAttachPath" : "/mailTestFile/mailAttach/mail_test_english.txt"
+ "hopeResult": "root"
+ "hopeSuccessNumber": 1
+ "logQueryParam":
+ -
+ "queryFiledKey": "mail_account"
+ "queryValue": "[email protected]"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_MAIL_CONTENT"
+ "objectType": "keywords"
+ "objectSubType": "keywords"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "Bestman"
+ -
+ "protocolField": "TSG_FIELD_MAIL_ATT_CONTENT"
+ "objectType": "keywords"
+ "objectSubType": "keywords"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "halashaogusina"
diff --git a/other/data/security/mail/security-mail-allow-content-attachmentname-attachmentcontent-from-to-account-data.yaml b/other/data/security/mail/security-mail-allow-content-attachmentname-attachmentcontent-from-to-account-data.yaml
new file mode 100644
index 0000000..6d3c02c
--- /dev/null
+++ b/other/data/security/mail/security-mail-allow-content-attachmentname-attachmentcontent-from-to-account-data.yaml
@@ -0,0 +1,86 @@
+#注意keywordArray下的关键字必须为数组形式
+"allow-content-attachmentname-attachmentcontent-from-to-account_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-mail-allow-content-attachmentname-attachmentcontent-from-to-account-0001"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "isGre": 0
+ "action": "allow"
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 1
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "mail"
+ "appIdObjects":
+ - "mail"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "smtpServer": "default"
+ "mailFrom": "default"
+ "mailTo": "[email protected]"
+ "mailPassword": "default"
+ "mailMessagePath" : "/mailTestFile/mailMessage/subjectEnglish.txt"
+ "mailAttachPath" : "/mailTestFile/mailAttach/mail_test_english.txt"
+ "hopeResult": "root"
+ "hopeSuccessNumber": 1
+ "logQueryParam":
+ -
+ "queryFiledKey": "mail_from"
+ "queryValue": "[email protected]"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_MAIL_CONTENT"
+ "objectType": "keywords"
+ "objectSubType": "keywords"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "Bestman"
+ -
+ "protocolField": "TSG_FIELD_MAIL_FROM"
+ "objectType": "account"
+ "objectSubType": "account"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "*163.com"
+ -
+ "protocolField": "TSG_FIELD_MAIL_TO"
+ "objectType": "account"
+ "objectSubType": "account"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "[email protected]"
+ -
+ "protocolField": "TSG_FIELD_MAIL_ATT_CONTENT"
+ "objectType": "keywords"
+ "objectSubType": "keywords"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "halashaogusina"
+ -
+ "protocolField": "TSG_FIELD_MAIL_ATT_NAME"
+ "objectType": "keywords"
+ "objectSubType": "keywords"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "mail_test_englis*"
+ -
+ "protocolField": "TSG_FIELD_MAIL_ACCOUNT"
+ "objectType": "account"
+ "objectSubType": "account"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "[email protected]" \ No newline at end of file
diff --git a/other/data/security/mail/security-mail-allow-content-attachmentname-data.yaml b/other/data/security/mail/security-mail-allow-content-attachmentname-data.yaml
new file mode 100644
index 0000000..991b5da
--- /dev/null
+++ b/other/data/security/mail/security-mail-allow-content-attachmentname-data.yaml
@@ -0,0 +1,54 @@
+#注意keywordArray下的关键字必须为数组形式
+"allow-content-attachmentname_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-mail-allow-content-attachmentname-0001"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "isGre": 0
+ "action": "allow"
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 1
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "mail"
+ "appIdObjects":
+ - "mail"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "smtpServer": "default"
+ "mailFrom": "default"
+ "mailTo": "[email protected]"
+ "mailPassword": "default"
+ "mailMessagePath" : "/mailTestFile/mailMessage/subjectEnglish.txt"
+ "mailAttachPath" : "/mailTestFile/mailAttach/mail_test_english.txt"
+ "hopeResult": "root"
+ "hopeSuccessNumber": 1
+ "logQueryParam":
+ -
+ "queryFiledKey": "mail_account"
+ "queryValue": "[email protected]"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_MAIL_CONTENT"
+ "objectType": "keywords"
+ "objectSubType": "keywords"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "Bestman"
+ -
+ "protocolField": "TSG_FIELD_MAIL_ATT_NAME"
+ "objectType": "keywords"
+ "objectSubType": "keywords"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "mail_test_englis*" \ No newline at end of file
diff --git a/other/data/security/mail/security-mail-allow-content-from-data.yaml b/other/data/security/mail/security-mail-allow-content-from-data.yaml
new file mode 100644
index 0000000..d665e9c
--- /dev/null
+++ b/other/data/security/mail/security-mail-allow-content-from-data.yaml
@@ -0,0 +1,54 @@
+#注意keywordArray下的关键字必须为数组形式
+"allow-content-from_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-mail-allow-content-from-0001"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "isGre": 0
+ "action": "allow"
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 1
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "mail"
+ "appIdObjects":
+ - "mail"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "smtpServer": "default"
+ "mailFrom": "default"
+ "mailTo": "[email protected]"
+ "mailPassword": "default"
+ "mailMessagePath" : "/mailTestFile/mailMessage/subjectEnglish.txt"
+ "mailAttachPath" : "/mailTestFile/mailAttach/mail_test_english.txt"
+ "hopeResult": "root"
+ "hopeSuccessNumber": 1
+ "logQueryParam":
+ -
+ "queryFiledKey": "mail_account"
+ "queryValue": "[email protected]"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_MAIL_CONTENT"
+ "objectType": "keywords"
+ "objectSubType": "keywords"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "Bestman"
+ -
+ "protocolField": "TSG_FIELD_MAIL_FROM"
+ "objectType": "account"
+ "objectSubType": "account"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "*163.com"
diff --git a/other/data/security/mail/security-mail-allow-content-substring-data.yaml b/other/data/security/mail/security-mail-allow-content-substring-data.yaml
new file mode 100644
index 0000000..591b79e
--- /dev/null
+++ b/other/data/security/mail/security-mail-allow-content-substring-data.yaml
@@ -0,0 +1,46 @@
+#注意keywordArray下的关键字必须为数组形式
+"allow-content-substring_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-mail-allow-content-substring-0001"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "isGre": 0
+ "action": "allow"
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 1
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "mail"
+ "appIdObjects":
+ - "mail"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "smtpServer": "default"
+ "mailFrom": "default"
+ "mailTo": "[email protected]"
+ "mailPassword": "default"
+ "mailMessagePath" : "/mailTestFile/mailMessage/subjectEnglish.txt"
+ "mailAttachPath" : "/mailTestFile/mailAttach/mail_test_english.txt"
+ "hopeResult": "root"
+ "hopeSuccessNumber": 1
+ "logQueryParam":
+ -
+ "queryFiledKey": "mail_from"
+ "queryValue": "[email protected]"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_MAIL_CONTENT"
+ "objectType": "keywords"
+ "objectSubType": "keywords"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "Bestman" \ No newline at end of file
diff --git a/other/data/security/mail/security-mail-allow-content-to-data.yaml b/other/data/security/mail/security-mail-allow-content-to-data.yaml
new file mode 100644
index 0000000..35d583d
--- /dev/null
+++ b/other/data/security/mail/security-mail-allow-content-to-data.yaml
@@ -0,0 +1,54 @@
+#注意keywordArray下的关键字必须为数组形式
+"allow-content-to_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-mail-allow-content-to-0001"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "isGre": 0
+ "action": "allow"
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 1
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "mail"
+ "appIdObjects":
+ - "mail"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "smtpServer": "default"
+ "mailFrom": "default"
+ "mailTo": "[email protected]"
+ "mailPassword": "default"
+ "mailMessagePath" : "/mailTestFile/mailMessage/subjectEnglish.txt"
+ "mailAttachPath" : "/mailTestFile/mailAttach/mail_test_english.txt"
+ "hopeResult": "root"
+ "hopeSuccessNumber": 1
+ "logQueryParam":
+ -
+ "queryFiledKey": "mail_account"
+ "queryValue": "[email protected]"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_MAIL_CONTENT"
+ "objectType": "keywords"
+ "objectSubType": "keywords"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "Bestman"
+ -
+ "protocolField": "TSG_FIELD_MAIL_TO"
+ "objectType": "account"
+ "objectSubType": "account"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "[email protected]" \ No newline at end of file
diff --git a/other/data/security/mail/security-mail-allow-contents-account-data.yaml b/other/data/security/mail/security-mail-allow-contents-account-data.yaml
new file mode 100644
index 0000000..df812a8
--- /dev/null
+++ b/other/data/security/mail/security-mail-allow-contents-account-data.yaml
@@ -0,0 +1,54 @@
+#注意keywordArray下的关键字必须为数组形式
+"allow-content-account_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-mail-allow-content-account-0001"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "isGre": 0
+ "action": "allow"
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 1
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "mail"
+ "appIdObjects":
+ - "mail"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "smtpServer": "default"
+ "mailFrom": "default"
+ "mailTo": "[email protected]"
+ "mailPassword": "default"
+ "mailMessagePath" : "/mailTestFile/mailMessage/subjectEnglish.txt"
+ "mailAttachPath" : "/mailTestFile/mailAttach/mail_test_english.txt"
+ "hopeResult": "root"
+ "hopeSuccessNumber": 1
+ "logQueryParam":
+ -
+ "queryFiledKey": "mail_account"
+ "queryValue": "[email protected]"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_MAIL_CONTENT"
+ "objectType": "keywords"
+ "objectSubType": "keywords"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "Bestman"
+ -
+ "protocolField": "TSG_FIELD_MAIL_ACCOUNT"
+ "objectType": "account"
+ "objectSubType": "account"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "[email protected]" \ No newline at end of file
diff --git a/other/data/security/mail/security-mail-allow-from-account-data.yaml b/other/data/security/mail/security-mail-allow-from-account-data.yaml
new file mode 100644
index 0000000..9ea3279
--- /dev/null
+++ b/other/data/security/mail/security-mail-allow-from-account-data.yaml
@@ -0,0 +1,54 @@
+#注意keywordArray下的关键字必须为数组形式
+"allow-from-account_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-mail-allow-from-account-0001"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "isGre": 0
+ "action": "allow"
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 1
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "mail"
+ "appIdObjects":
+ - "mail"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "smtpServer": "default"
+ "mailFrom": "default"
+ "mailTo": "[email protected]"
+ "mailPassword": "default"
+ "mailMessagePath" : "/mailTestFile/mailMessage/subjectEnglish.txt"
+ "mailAttachPath" : "/mailTestFile/mailAttach/mail_test_english.txt"
+ "hopeResult": "root"
+ "hopeSuccessNumber": 1
+ "logQueryParam":
+ -
+ "queryFiledKey": "mail_account"
+ "queryValue": "[email protected]"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_MAIL_FROM"
+ "objectType": "account"
+ "objectSubType": "account"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "*163.com"
+ -
+ "protocolField": "TSG_FIELD_MAIL_ACCOUNT"
+ "objectType": "account"
+ "objectSubType": "account"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "[email protected]" \ No newline at end of file
diff --git a/other/data/security/mail/security-mail-allow-from-exactly-data.yaml b/other/data/security/mail/security-mail-allow-from-exactly-data.yaml
new file mode 100644
index 0000000..5bf4b9c
--- /dev/null
+++ b/other/data/security/mail/security-mail-allow-from-exactly-data.yaml
@@ -0,0 +1,46 @@
+#注意keywordArray下的关键字必须为数组形式
+"allow-from-exactly_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-mail-allow-from-exactly-0001"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "isGre": 0
+ "action": "allow"
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 1
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "mail"
+ "appIdObjects":
+ - "mail"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "smtpServer": "default"
+ "mailFrom": "default"
+ "mailTo": "[email protected]"
+ "mailPassword": "default"
+ "mailMessagePath" : "/mailTestFile/mailMessage/subjectEnglish.txt"
+ "mailAttachPath" : "/mailTestFile/mailAttach/mail_test_english.txt"
+ "hopeResult": "root"
+ "hopeSuccessNumber": 1
+ "logQueryParam":
+ -
+ "queryFiledKey": "mail_from_cmd"
+ "queryValue": "[email protected]"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_MAIL_FROM"
+ "objectType": "account"
+ "objectSubType": "account"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "[email protected]" \ No newline at end of file
diff --git a/other/data/security/mail/security-mail-allow-from-prefix-data.yaml b/other/data/security/mail/security-mail-allow-from-prefix-data.yaml
new file mode 100644
index 0000000..a9f52b3
--- /dev/null
+++ b/other/data/security/mail/security-mail-allow-from-prefix-data.yaml
@@ -0,0 +1,46 @@
+#注意keywordArray下的关键字必须为数组形式
+"allow-from-prefix_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-mail-allow-from-prefix-0001"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "isGre": 0
+ "action": "allow"
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 1
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "mail"
+ "appIdObjects":
+ - "mail"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "smtpServer": "default"
+ "mailFrom": "default"
+ "mailTo": "[email protected]"
+ "mailPassword": "default"
+ "mailMessagePath" : "/mailTestFile/mailMessage/subjectEnglish.txt"
+ "mailAttachPath" : "/mailTestFile/mailAttach/mail_test_english.txt"
+ "hopeResult": "root"
+ "hopeSuccessNumber": 1
+ "logQueryParam":
+ -
+ "queryFiledKey": "mail_from_cmd"
+ "queryValue": "[email protected]"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_MAIL_FROM"
+ "objectType": "account"
+ "objectSubType": "account"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "hbn@16*" \ No newline at end of file
diff --git a/other/data/security/mail/security-mail-allow-from-substring-data.yaml b/other/data/security/mail/security-mail-allow-from-substring-data.yaml
new file mode 100644
index 0000000..0e2197b
--- /dev/null
+++ b/other/data/security/mail/security-mail-allow-from-substring-data.yaml
@@ -0,0 +1,46 @@
+#注意keywordArray下的关键字必须为数组形式
+"allow-from-substring_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-mail-allow-from-substring-0001"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "isGre": 0
+ "action": "allow"
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 1
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "mail"
+ "appIdObjects":
+ - "mail"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "smtpServer": "default"
+ "mailFrom": "default"
+ "mailTo": "[email protected]"
+ "mailPassword": "default"
+ "mailMessagePath" : "/mailTestFile/mailMessage/subjectEnglish.txt"
+ "mailAttachPath" : "/mailTestFile/mailAttach/mail_test_english.txt"
+ "hopeResult": "root"
+ "hopeSuccessNumber": 1
+ "logQueryParam":
+ -
+ "queryFiledKey": "mail_from_cmd"
+ "queryValue": "[email protected]"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_MAIL_FROM"
+ "objectType": "account"
+ "objectSubType": "account"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "hbn@163" \ No newline at end of file
diff --git a/other/data/security/mail/security-mail-allow-from-suffix-data.yaml b/other/data/security/mail/security-mail-allow-from-suffix-data.yaml
new file mode 100644
index 0000000..6287db3
--- /dev/null
+++ b/other/data/security/mail/security-mail-allow-from-suffix-data.yaml
@@ -0,0 +1,46 @@
+#注意keywordArray下的关键字必须为数组形式
+"allow-from-suffix_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-mail-allow-to-suffix-0001"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "isGre": 0
+ "action": "allow"
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 1
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "mail"
+ "appIdObjects":
+ - "mail"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "smtpServer": "default"
+ "mailFrom": "default"
+ "mailTo": "[email protected]"
+ "mailPassword": "default"
+ "mailMessagePath" : "/mailTestFile/mailMessage/subjectEnglish.txt"
+ "mailAttachPath" : "/mailTestFile/mailAttach/mail_test_english.txt"
+ "hopeResult": "root"
+ "hopeSuccessNumber": 1
+ "logQueryParam":
+ -
+ "queryFiledKey": "mail_from_cmd"
+ "queryValue": "[email protected]"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_MAIL_FROM"
+ "objectType": "account"
+ "objectSubType": "account"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "*163.com" \ No newline at end of file
diff --git a/other/data/security/mail/security-mail-allow-from-to-data.yaml b/other/data/security/mail/security-mail-allow-from-to-data.yaml
new file mode 100644
index 0000000..e3269cc
--- /dev/null
+++ b/other/data/security/mail/security-mail-allow-from-to-data.yaml
@@ -0,0 +1,54 @@
+#注意keywordArray下的关键字必须为数组形式
+"allow-from-to_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-mail-allow-from-to-0001"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "isGre": 0
+ "action": "allow"
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 1
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "mail"
+ "appIdObjects":
+ - "mail"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "smtpServer": "default"
+ "mailFrom": "default"
+ "mailTo": "[email protected]"
+ "mailPassword": "default"
+ "mailMessagePath" : "/mailTestFile/mailMessage/subjectEnglish.txt"
+ "mailAttachPath" : "/mailTestFile/mailAttach/mail_test_english.txt"
+ "hopeResult": "root"
+ "hopeSuccessNumber": 1
+ "logQueryParam":
+ -
+ "queryFiledKey": "mail_account"
+ "queryValue": "[email protected]"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_MAIL_FROM"
+ "objectType": "account"
+ "objectSubType": "account"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "*163.com"
+ -
+ "protocolField": "TSG_FIELD_MAIL_TO"
+ "objectType": "account"
+ "objectSubType": "account"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "[email protected]"
diff --git a/other/data/security/mail/security-mail-allow-only-ipAndApplication-data.yaml b/other/data/security/mail/security-mail-allow-only-ipAndApplication-data.yaml
index 1f5f8ca..d2afc40 100644
--- a/other/data/security/mail/security-mail-allow-only-ipAndApplication-data.yaml
+++ b/other/data/security/mail/security-mail-allow-only-ipAndApplication-data.yaml
@@ -21,11 +21,11 @@
"isTestMachine": 1
"testMachine":
-
- "smtpServer": "smtp.163.com"
- "mailFrom": "[email protected]"
- "mailTo": "[email protected]"
- "mailPassword": "DZGAMFOANHHSBGHF"
- "mailMessagePath" : "/mailTestFile/mailMessage/subject.txt"
+ "smtpServer": "default"
+ "mailFrom": "default"
+ "mailTo": "[email protected]"
+ "mailPassword": "default"
+ "mailMessagePath" : "/mailTestFile/mailMessage/subjectEnglish.txt"
"mailAttachPath" : "/mailTestFile/mailAttach/mail_test_english.txt"
"hopeResult": "root"
"hopeSuccessNumber": 1
@@ -45,5 +45,49 @@
-
"ip": "1.1.1.1"
"port": "0-65535"
-
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-mail-allow-only-IpAndApplication-0002"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "action": "allow"
+ "isGre": 0
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 0
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "mail"
+ "appIdObjects":
+ - "mail"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "smtpServer": "default"
+ "mailFrom": "default"
+ "mailTo": "[email protected]"
+ "mailPassword": "default"
+ "mailMessagePath" : "/mailTestFile/mailMessage/subjectEnglish.txt"
+ "mailAttachPath" : "/mailTestFile/mailAttach/mail_test_english.txt"
+ "hopeResult": "root"
+ "hopeSuccessNumber": 1
+ "logQueryParam":
+ -
+ "queryFiledKey": "common_schema_type"
+ "queryValue": "empty"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_SECURITY_SOURCE_ADDR"
+ "objectType": "ip"
+ "objectSubType": "endpoint"
+ "objectList":
+ - "addItemList":
+ -
+ "ip": "1.1.1.1"
+ "port": "0-65535"
\ No newline at end of file
diff --git a/other/data/security/mail/security-mail-allow-subject-account-data.yaml b/other/data/security/mail/security-mail-allow-subject-account-data.yaml
new file mode 100644
index 0000000..9d7fea1
--- /dev/null
+++ b/other/data/security/mail/security-mail-allow-subject-account-data.yaml
@@ -0,0 +1,54 @@
+#注意keywordArray下的关键字必须为数组形式
+"allow-subject-account_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-mail-allow-subject-account-0001"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "isGre": 0
+ "action": "allow"
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 1
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "mail"
+ "appIdObjects":
+ - "mail"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "smtpServer": "default"
+ "mailFrom": "default"
+ "mailTo": "[email protected]"
+ "mailPassword": "default"
+ "mailMessagePath" : "/mailTestFile/mailMessage/subjectEnglish.txt"
+ "mailAttachPath" : "/mailTestFile/mailAttach/mail_test_english.txt"
+ "hopeResult": "root"
+ "hopeSuccessNumber": 1
+ "logQueryParam":
+ -
+ "queryFiledKey": "mail_account"
+ "queryValue": "[email protected]"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_MAIL_SUBJECT"
+ "objectType": "keywords"
+ "objectSubType": "keywords"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "Bestman"
+ -
+ "protocolField": "TSG_FIELD_MAIL_ACCOUNT"
+ "objectType": "account"
+ "objectSubType": "account"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "[email protected]" \ No newline at end of file
diff --git a/other/data/security/mail/security-mail-allow-subject-attachmentcontent-data.yaml b/other/data/security/mail/security-mail-allow-subject-attachmentcontent-data.yaml
new file mode 100644
index 0000000..fabae24
--- /dev/null
+++ b/other/data/security/mail/security-mail-allow-subject-attachmentcontent-data.yaml
@@ -0,0 +1,54 @@
+#注意keywordArray下的关键字必须为数组形式
+"allow-subject-attachmentcontent_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-mail-allow-subject-attachmentcontent-0001"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "isGre": 0
+ "action": "allow"
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 1
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "mail"
+ "appIdObjects":
+ - "mail"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "smtpServer": "default"
+ "mailFrom": "default"
+ "mailTo": "[email protected]"
+ "mailPassword": "default"
+ "mailMessagePath" : "/mailTestFile/mailMessage/subjectEnglish.txt"
+ "mailAttachPath" : "/mailTestFile/mailAttach/mail_test_english.txt"
+ "hopeResult": "root"
+ "hopeSuccessNumber": 1
+ "logQueryParam":
+ -
+ "queryFiledKey": "mail_account"
+ "queryValue": "[email protected]"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_MAIL_SUBJECT"
+ "objectType": "keywords"
+ "objectSubType": "keywords"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "*man"
+ -
+ "protocolField": "TSG_FIELD_MAIL_ATT_CONTENT"
+ "objectType": "keywords"
+ "objectSubType": "keywords"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "halashaogusina" \ No newline at end of file
diff --git a/other/data/security/mail/security-mail-allow-subject-attachmentname-attachmentcontent-from-to-account-data.yaml b/other/data/security/mail/security-mail-allow-subject-attachmentname-attachmentcontent-from-to-account-data.yaml
new file mode 100644
index 0000000..1e118cb
--- /dev/null
+++ b/other/data/security/mail/security-mail-allow-subject-attachmentname-attachmentcontent-from-to-account-data.yaml
@@ -0,0 +1,86 @@
+#注意keywordArray下的关键字必须为数组形式
+"allow-subject-attachmentname-attachmentcontent-from-to-account_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-mail-allow-subject-attachmentname-attachmentcontent-from-to-account-0001"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "isGre": 0
+ "action": "allow"
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 1
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "mail"
+ "appIdObjects":
+ - "mail"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "smtpServer": "default"
+ "mailFrom": "default"
+ "mailTo": "[email protected]"
+ "mailPassword": "default"
+ "mailMessagePath" : "/mailTestFile/mailMessage/subjectEnglish.txt"
+ "mailAttachPath" : "/mailTestFile/mailAttach/mail_test_english.txt"
+ "hopeResult": "root"
+ "hopeSuccessNumber": 1
+ "logQueryParam":
+ -
+ "queryFiledKey": "mail_from"
+ "queryValue": "[email protected]"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_MAIL_SUBJECT"
+ "objectType": "keywords"
+ "objectSubType": "keywords"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "$Bestman"
+ -
+ "protocolField": "TSG_FIELD_MAIL_FROM"
+ "objectType": "account"
+ "objectSubType": "account"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "*163.com"
+ -
+ "protocolField": "TSG_FIELD_MAIL_TO"
+ "objectType": "account"
+ "objectSubType": "account"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "[email protected]"
+ -
+ "protocolField": "TSG_FIELD_MAIL_ATT_CONTENT"
+ "objectType": "keywords"
+ "objectSubType": "keywords"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "halashaogusina"
+ -
+ "protocolField": "TSG_FIELD_MAIL_ATT_NAME"
+ "objectType": "keywords"
+ "objectSubType": "keywords"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "mail_test_englis*"
+ -
+ "protocolField": "TSG_FIELD_MAIL_ACCOUNT"
+ "objectType": "account"
+ "objectSubType": "account"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "[email protected]" \ No newline at end of file
diff --git a/other/data/security/mail/security-mail-allow-subject-attachmentname-data.yaml b/other/data/security/mail/security-mail-allow-subject-attachmentname-data.yaml
new file mode 100644
index 0000000..34a328c
--- /dev/null
+++ b/other/data/security/mail/security-mail-allow-subject-attachmentname-data.yaml
@@ -0,0 +1,54 @@
+#注意keywordArray下的关键字必须为数组形式
+"allow-subject-attachmentname_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-mail-allow-subject-attachmentname-0001"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "isGre": 0
+ "action": "allow"
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 1
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "mail"
+ "appIdObjects":
+ - "mail"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "smtpServer": "default"
+ "mailFrom": "default"
+ "mailTo": "[email protected]"
+ "mailPassword": "default"
+ "mailMessagePath" : "/mailTestFile/mailMessage/subjectEnglish.txt"
+ "mailAttachPath" : "/mailTestFile/mailAttach/mail_test_english.txt"
+ "hopeResult": "root"
+ "hopeSuccessNumber": 1
+ "logQueryParam":
+ -
+ "queryFiledKey": "mail_account"
+ "queryValue": "[email protected]"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_MAIL_SUBJECT"
+ "objectType": "keywords"
+ "objectSubType": "keywords"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "Bes*"
+ -
+ "protocolField": "TSG_FIELD_MAIL_ATT_NAME"
+ "objectType": "keywords"
+ "objectSubType": "keywords"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "l_test_englis"
diff --git a/other/data/security/mail/security-mail-allow-subject-content-attachmentcontent-from-to-account-data.yaml b/other/data/security/mail/security-mail-allow-subject-content-attachmentcontent-from-to-account-data.yaml
new file mode 100644
index 0000000..4253668
--- /dev/null
+++ b/other/data/security/mail/security-mail-allow-subject-content-attachmentcontent-from-to-account-data.yaml
@@ -0,0 +1,86 @@
+#注意keywordArray下的关键字必须为数组形式
+"allow-subject-content-attachmentcontent-from-to-account_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-mail-allow-subject-content-attachmentcontent-from-to-account-0001"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "isGre": 0
+ "action": "allow"
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 1
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "mail"
+ "appIdObjects":
+ - "mail"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "smtpServer": "default"
+ "mailFrom": "default"
+ "mailTo": "[email protected]"
+ "mailPassword": "default"
+ "mailMessagePath" : "/mailTestFile/mailMessage/subjectEnglish.txt"
+ "mailAttachPath" : "/mailTestFile/mailAttach/mail_test_english.txt"
+ "hopeResult": "root"
+ "hopeSuccessNumber": 1
+ "logQueryParam":
+ -
+ "queryFiledKey": "mail_from"
+ "queryValue": "[email protected]"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_MAIL_SUBJECT"
+ "objectType": "keywords"
+ "objectSubType": "keywords"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "$Bestman"
+ -
+ "protocolField": "TSG_FIELD_MAIL_CONTENT"
+ "objectType": "keywords"
+ "objectSubType": "keywords"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "Bestman"
+ -
+ "protocolField": "TSG_FIELD_MAIL_FROM"
+ "objectType": "account"
+ "objectSubType": "account"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "*163.com"
+ -
+ "protocolField": "TSG_FIELD_MAIL_TO"
+ "objectType": "account"
+ "objectSubType": "account"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "[email protected]"
+ -
+ "protocolField": "TSG_FIELD_MAIL_ATT_CONTENT"
+ "objectType": "keywords"
+ "objectSubType": "keywords"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "halashaogusina"
+ -
+ "protocolField": "TSG_FIELD_MAIL_ACCOUNT"
+ "objectType": "account"
+ "objectSubType": "account"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "[email protected]" \ No newline at end of file
diff --git a/other/data/security/mail/security-mail-allow-subject-content-attachmentname--from-to-account-data.yaml b/other/data/security/mail/security-mail-allow-subject-content-attachmentname--from-to-account-data.yaml
new file mode 100644
index 0000000..099ac5a
--- /dev/null
+++ b/other/data/security/mail/security-mail-allow-subject-content-attachmentname--from-to-account-data.yaml
@@ -0,0 +1,86 @@
+#注意keywordArray下的关键字必须为数组形式
+"allow-subject-content-attachmentname-from-to-account_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-mail-allow-subject-content-attachmentname-from-to-account-0001"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "isGre": 0
+ "action": "allow"
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 1
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "mail"
+ "appIdObjects":
+ - "mail"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "smtpServer": "default"
+ "mailFrom": "default"
+ "mailTo": "[email protected]"
+ "mailPassword": "default"
+ "mailMessagePath" : "/mailTestFile/mailMessage/subjectEnglish.txt"
+ "mailAttachPath" : "/mailTestFile/mailAttach/mail_test_english.txt"
+ "hopeResult": "root"
+ "hopeSuccessNumber": 1
+ "logQueryParam":
+ -
+ "queryFiledKey": "mail_from"
+ "queryValue": "[email protected]"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_MAIL_SUBJECT"
+ "objectType": "keywords"
+ "objectSubType": "keywords"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "$Bestman"
+ -
+ "protocolField": "TSG_FIELD_MAIL_CONTENT"
+ "objectType": "keywords"
+ "objectSubType": "keywords"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "Bestman"
+ -
+ "protocolField": "TSG_FIELD_MAIL_FROM"
+ "objectType": "account"
+ "objectSubType": "account"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "*163.com"
+ -
+ "protocolField": "TSG_FIELD_MAIL_TO"
+ "objectType": "account"
+ "objectSubType": "account"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "[email protected]"
+ -
+ "protocolField": "TSG_FIELD_MAIL_ATT_NAME"
+ "objectType": "keywords"
+ "objectSubType": "keywords"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "mail_test_englis*"
+ -
+ "protocolField": "TSG_FIELD_MAIL_ACCOUNT"
+ "objectType": "account"
+ "objectSubType": "account"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "[email protected]" \ No newline at end of file
diff --git a/other/data/security/mail/security-mail-allow-subject-content-attachmentname-attachmentcontent-from-account-data.yaml b/other/data/security/mail/security-mail-allow-subject-content-attachmentname-attachmentcontent-from-account-data.yaml
new file mode 100644
index 0000000..632deb2
--- /dev/null
+++ b/other/data/security/mail/security-mail-allow-subject-content-attachmentname-attachmentcontent-from-account-data.yaml
@@ -0,0 +1,86 @@
+#注意keywordArray下的关键字必须为数组形式
+"allow-subject-content-attachmentname-attachmentcontent-from-account_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-mail-allow-subject-content-attachmentname-attachmentcontent-from-account-0001"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "isGre": 0
+ "action": "allow"
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 1
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "mail"
+ "appIdObjects":
+ - "mail"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "smtpServer": "default"
+ "mailFrom": "default"
+ "mailTo": "[email protected]"
+ "mailPassword": "default"
+ "mailMessagePath" : "/mailTestFile/mailMessage/subjectEnglish.txt"
+ "mailAttachPath" : "/mailTestFile/mailAttach/mail_test_english.txt"
+ "hopeResult": "root"
+ "hopeSuccessNumber": 1
+ "logQueryParam":
+ -
+ "queryFiledKey": "mail_from"
+ "queryValue": "[email protected]"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_MAIL_SUBJECT"
+ "objectType": "keywords"
+ "objectSubType": "keywords"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "$Bestman"
+ -
+ "protocolField": "TSG_FIELD_MAIL_CONTENT"
+ "objectType": "keywords"
+ "objectSubType": "keywords"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "Bestman"
+ -
+ "protocolField": "TSG_FIELD_MAIL_FROM"
+ "objectType": "account"
+ "objectSubType": "account"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "*163.com"
+ -
+ "protocolField": "TSG_FIELD_MAIL_ATT_CONTENT"
+ "objectType": "keywords"
+ "objectSubType": "keywords"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "halashaogusina"
+ -
+ "protocolField": "TSG_FIELD_MAIL_ATT_NAME"
+ "objectType": "keywords"
+ "objectSubType": "keywords"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "mail_test_englis*"
+ -
+ "protocolField": "TSG_FIELD_MAIL_ACCOUNT"
+ "objectType": "account"
+ "objectSubType": "account"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "[email protected]" \ No newline at end of file
diff --git a/other/data/security/mail/security-mail-allow-subject-content-attachmentname-attachmentcontent-from-to-data.yaml b/other/data/security/mail/security-mail-allow-subject-content-attachmentname-attachmentcontent-from-to-data.yaml
new file mode 100644
index 0000000..3223f8c
--- /dev/null
+++ b/other/data/security/mail/security-mail-allow-subject-content-attachmentname-attachmentcontent-from-to-data.yaml
@@ -0,0 +1,86 @@
+#注意keywordArray下的关键字必须为数组形式
+"allow-subject-content-attachmentname-attachmentcontent-from-to_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-mail-allow-subject-content-attachmentname-attachmentcontent-from-to-0001"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "isGre": 0
+ "action": "allow"
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 1
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "mail"
+ "appIdObjects":
+ - "mail"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "smtpServer": "default"
+ "mailFrom": "default"
+ "mailTo": "[email protected]"
+ "mailPassword": "default"
+ "mailMessagePath" : "/mailTestFile/mailMessage/subjectEnglish.txt"
+ "mailAttachPath" : "/mailTestFile/mailAttach/mail_test_english.txt"
+ "hopeResult": "root"
+ "hopeSuccessNumber": 1
+ "logQueryParam":
+ -
+ "queryFiledKey": "mail_from"
+ "queryValue": "[email protected]"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_MAIL_SUBJECT"
+ "objectType": "keywords"
+ "objectSubType": "keywords"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "$Bestman"
+ -
+ "protocolField": "TSG_FIELD_MAIL_CONTENT"
+ "objectType": "keywords"
+ "objectSubType": "keywords"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "Bestman"
+ -
+ "protocolField": "TSG_FIELD_MAIL_FROM"
+ "objectType": "account"
+ "objectSubType": "account"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "*163.com"
+ -
+ "protocolField": "TSG_FIELD_MAIL_TO"
+ "objectType": "account"
+ "objectSubType": "account"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "[email protected]"
+ -
+ "protocolField": "TSG_FIELD_MAIL_ATT_CONTENT"
+ "objectType": "keywords"
+ "objectSubType": "keywords"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "halashaogusina"
+ -
+ "protocolField": "TSG_FIELD_MAIL_ATT_NAME"
+ "objectType": "keywords"
+ "objectSubType": "keywords"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "mail_test_englis*"
diff --git a/other/data/security/mail/security-mail-allow-subject-content-attachmentname-attachmentcontent-to-account-data.yaml b/other/data/security/mail/security-mail-allow-subject-content-attachmentname-attachmentcontent-to-account-data.yaml
new file mode 100644
index 0000000..5fda0b0
--- /dev/null
+++ b/other/data/security/mail/security-mail-allow-subject-content-attachmentname-attachmentcontent-to-account-data.yaml
@@ -0,0 +1,86 @@
+#注意keywordArray下的关键字必须为数组形式
+"allow-subject-content-attachmentname-attachmentcontent-to-account_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-mail-allow-subject-content-attachmentname-attachmentcontent-to-account-0001"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "isGre": 0
+ "action": "allow"
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 1
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "mail"
+ "appIdObjects":
+ - "mail"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "smtpServer": "default"
+ "mailFrom": "default"
+ "mailTo": "[email protected]"
+ "mailPassword": "default"
+ "mailMessagePath" : "/mailTestFile/mailMessage/subjectEnglish.txt"
+ "mailAttachPath" : "/mailTestFile/mailAttach/mail_test_english.txt"
+ "hopeResult": "root"
+ "hopeSuccessNumber": 1
+ "logQueryParam":
+ -
+ "queryFiledKey": "mail_from"
+ "queryValue": "[email protected]"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_MAIL_SUBJECT"
+ "objectType": "keywords"
+ "objectSubType": "keywords"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "$Bestman"
+ -
+ "protocolField": "TSG_FIELD_MAIL_CONTENT"
+ "objectType": "keywords"
+ "objectSubType": "keywords"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "Bestman"
+ -
+ "protocolField": "TSG_FIELD_MAIL_TO"
+ "objectType": "account"
+ "objectSubType": "account"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "[email protected]"
+ -
+ "protocolField": "TSG_FIELD_MAIL_ATT_CONTENT"
+ "objectType": "keywords"
+ "objectSubType": "keywords"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "halashaogusina"
+ -
+ "protocolField": "TSG_FIELD_MAIL_ATT_NAME"
+ "objectType": "keywords"
+ "objectSubType": "keywords"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "mail_test_englis*"
+ -
+ "protocolField": "TSG_FIELD_MAIL_ACCOUNT"
+ "objectType": "account"
+ "objectSubType": "account"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "[email protected]" \ No newline at end of file
diff --git a/other/data/security/mail/security-mail-allow-subject-content-data.yaml b/other/data/security/mail/security-mail-allow-subject-content-data.yaml
new file mode 100644
index 0000000..34e5342
--- /dev/null
+++ b/other/data/security/mail/security-mail-allow-subject-content-data.yaml
@@ -0,0 +1,54 @@
+#注意keywordArray下的关键字必须为数组形式
+"allow-subject-content_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-mail-allow-subject-content-0001"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "isGre": 0
+ "action": "allow"
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 1
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "mail"
+ "appIdObjects":
+ - "mail"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "smtpServer": "default"
+ "mailFrom": "default"
+ "mailTo": "[email protected]"
+ "mailPassword": "default"
+ "mailMessagePath" : "/mailTestFile/mailMessage/subjectEnglish.txt"
+ "mailAttachPath" : "/mailTestFile/mailAttach/mail_test_english.txt"
+ "hopeResult": "root"
+ "hopeSuccessNumber": 1
+ "logQueryParam":
+ -
+ "queryFiledKey": "mail_account"
+ "queryValue": "[email protected]"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_MAIL_SUBJECT"
+ "objectType": "keywords"
+ "objectSubType": "keywords"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "$Bestman"
+ -
+ "protocolField": "TSG_FIELD_MAIL_CONTENT"
+ "objectType": "keywords"
+ "objectSubType": "keywords"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "Bestman" \ No newline at end of file
diff --git a/other/data/security/mail/security-mail-allow-subject-exactly-data.yaml b/other/data/security/mail/security-mail-allow-subject-exactly-data.yaml
new file mode 100644
index 0000000..94da50b
--- /dev/null
+++ b/other/data/security/mail/security-mail-allow-subject-exactly-data.yaml
@@ -0,0 +1,46 @@
+#注意keywordArray下的关键字必须为数组形式
+"allow-subject-exactly_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-mail-allow-subject-exactly-0001"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "isGre": 0
+ "action": "allow"
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 1
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "mail"
+ "appIdObjects":
+ - "mail"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "smtpServer": "default"
+ "mailFrom": "default"
+ "mailTo": "[email protected]"
+ "mailPassword": "default"
+ "mailMessagePath" : "/mailTestFile/mailMessage/subjectEnglish.txt"
+ "mailAttachPath" : "/mailTestFile/mailAttach/mail_test_english.txt"
+ "hopeResult": "root"
+ "hopeSuccessNumber": 1
+ "logQueryParam":
+ -
+ "queryFiledKey": "mail_from"
+ "queryValue": "[email protected]"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_MAIL_SUBJECT"
+ "objectType": "keywords"
+ "objectSubType": "keywords"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "$Bestman" \ No newline at end of file
diff --git a/other/data/security/mail/security-mail-allow-subject-from-data.yaml b/other/data/security/mail/security-mail-allow-subject-from-data.yaml
new file mode 100644
index 0000000..90aadc4
--- /dev/null
+++ b/other/data/security/mail/security-mail-allow-subject-from-data.yaml
@@ -0,0 +1,54 @@
+#注意keywordArray下的关键字必须为数组形式
+"allow-subject-from_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-mail-allow-subject-from-0001"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "isGre": 0
+ "action": "allow"
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 1
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "mail"
+ "appIdObjects":
+ - "mail"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "smtpServer": "default"
+ "mailFrom": "default"
+ "mailTo": "[email protected]"
+ "mailPassword": "default"
+ "mailMessagePath" : "/mailTestFile/mailMessage/subjectEnglish.txt"
+ "mailAttachPath" : "/mailTestFile/mailAttach/mail_test_english.txt"
+ "hopeResult": "root"
+ "hopeSuccessNumber": 1
+ "logQueryParam":
+ -
+ "queryFiledKey": "mail_account"
+ "queryValue": "[email protected]"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_MAIL_SUBJECT"
+ "objectType": "keywords"
+ "objectSubType": "keywords"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "Bestman"
+ -
+ "protocolField": "TSG_FIELD_MAIL_FROM"
+ "objectType": "account"
+ "objectSubType": "account"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "*163.com"
diff --git a/other/data/security/mail/security-mail-allow-subject-prefix-data.yaml b/other/data/security/mail/security-mail-allow-subject-prefix-data.yaml
new file mode 100644
index 0000000..5825547
--- /dev/null
+++ b/other/data/security/mail/security-mail-allow-subject-prefix-data.yaml
@@ -0,0 +1,46 @@
+#注意keywordArray下的关键字必须为数组形式
+"allow-subject-prefix_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-mail-allow-subject-prefix-0001"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "isGre": 0
+ "action": "allow"
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 1
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "mail"
+ "appIdObjects":
+ - "mail"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "smtpServer": "default"
+ "mailFrom": "default"
+ "mailTo": "[email protected]"
+ "mailPassword": "default"
+ "mailMessagePath" : "/mailTestFile/mailMessage/subjectEnglish.txt"
+ "mailAttachPath" : "/mailTestFile/mailAttach/mail_test_english.txt"
+ "hopeResult": "root"
+ "hopeSuccessNumber": 1
+ "logQueryParam":
+ -
+ "queryFiledKey": "mail_from"
+ "queryValue": "[email protected]"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_MAIL_SUBJECT"
+ "objectType": "keywords"
+ "objectSubType": "keywords"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "Best*" \ No newline at end of file
diff --git a/other/data/security/mail/security-mail-allow-subject-substring-data.yaml b/other/data/security/mail/security-mail-allow-subject-substring-data.yaml
new file mode 100644
index 0000000..0404656
--- /dev/null
+++ b/other/data/security/mail/security-mail-allow-subject-substring-data.yaml
@@ -0,0 +1,46 @@
+#注意keywordArray下的关键字必须为数组形式
+"allow-subject-substring_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-mail-allow-subject-substring-0001"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "isGre": 0
+ "action": "allow"
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 1
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "mail"
+ "appIdObjects":
+ - "mail"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "smtpServer": "default"
+ "mailFrom": "default"
+ "mailTo": "[email protected]"
+ "mailPassword": "default"
+ "mailMessagePath" : "/mailTestFile/mailMessage/subjectEnglish.txt"
+ "mailAttachPath" : "/mailTestFile/mailAttach/mail_test_english.txt"
+ "hopeResult": "root"
+ "hopeSuccessNumber": 1
+ "logQueryParam":
+ -
+ "queryFiledKey": "mail_from"
+ "queryValue": "[email protected]"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_MAIL_SUBJECT"
+ "objectType": "keywords"
+ "objectSubType": "keywords"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "Bestman" \ No newline at end of file
diff --git a/other/data/security/mail/security-mail-allow-subject-suffix-data.yaml b/other/data/security/mail/security-mail-allow-subject-suffix-data.yaml
new file mode 100644
index 0000000..2f964e0
--- /dev/null
+++ b/other/data/security/mail/security-mail-allow-subject-suffix-data.yaml
@@ -0,0 +1,46 @@
+#注意keywordArray下的关键字必须为数组形式
+"allow-subject-suffix_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-mail-allow-subject-suffix-0001"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "isGre": 0
+ "action": "allow"
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 1
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "mail"
+ "appIdObjects":
+ - "mail"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "smtpServer": "default"
+ "mailFrom": "default"
+ "mailTo": "[email protected]"
+ "mailPassword": "default"
+ "mailMessagePath" : "/mailTestFile/mailMessage/subjectEnglish.txt"
+ "mailAttachPath" : "/mailTestFile/mailAttach/mail_test_english.txt"
+ "hopeResult": "root"
+ "hopeSuccessNumber": 1
+ "logQueryParam":
+ -
+ "queryFiledKey": "mail_from"
+ "queryValue": "[email protected]"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_MAIL_SUBJECT"
+ "objectType": "keywords"
+ "objectSubType": "keywords"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "*tman" \ No newline at end of file
diff --git a/other/data/security/mail/security-mail-allow-subject-to-data.yaml b/other/data/security/mail/security-mail-allow-subject-to-data.yaml
new file mode 100644
index 0000000..0420db6
--- /dev/null
+++ b/other/data/security/mail/security-mail-allow-subject-to-data.yaml
@@ -0,0 +1,54 @@
+#注意keywordArray下的关键字必须为数组形式
+"allow-subject-to_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-mail-allow-subject-to-0001"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "isGre": 0
+ "action": "allow"
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 1
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "mail"
+ "appIdObjects":
+ - "mail"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "smtpServer": "default"
+ "mailFrom": "default"
+ "mailTo": "[email protected]"
+ "mailPassword": "default"
+ "mailMessagePath" : "/mailTestFile/mailMessage/subjectEnglish.txt"
+ "mailAttachPath" : "/mailTestFile/mailAttach/mail_test_english.txt"
+ "hopeResult": "root"
+ "hopeSuccessNumber": 1
+ "logQueryParam":
+ -
+ "queryFiledKey": "mail_account"
+ "queryValue": "[email protected]"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_MAIL_SUBJECT"
+ "objectType": "keywords"
+ "objectSubType": "keywords"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "Bestman"
+ -
+ "protocolField": "TSG_FIELD_MAIL_TO"
+ "objectType": "account"
+ "objectSubType": "account"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "[email protected]"
diff --git a/other/data/security/mail/security-mail-allow-to-account-data.yaml b/other/data/security/mail/security-mail-allow-to-account-data.yaml
new file mode 100644
index 0000000..607a32e
--- /dev/null
+++ b/other/data/security/mail/security-mail-allow-to-account-data.yaml
@@ -0,0 +1,54 @@
+#注意keywordArray下的关键字必须为数组形式
+"allow-to-account_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-mail-allow-to-account-0001"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "isGre": 0
+ "action": "allow"
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 1
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "mail"
+ "appIdObjects":
+ - "mail"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "smtpServer": "default"
+ "mailFrom": "default"
+ "mailTo": "[email protected]"
+ "mailPassword": "default"
+ "mailMessagePath" : "/mailTestFile/mailMessage/subjectEnglish.txt"
+ "mailAttachPath" : "/mailTestFile/mailAttach/mail_test_english.txt"
+ "hopeResult": "root"
+ "hopeSuccessNumber": 1
+ "logQueryParam":
+ -
+ "queryFiledKey": "mail_account"
+ "queryValue": "[email protected]"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_MAIL_TO"
+ "objectType": "account"
+ "objectSubType": "account"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "[email protected]"
+ -
+ "protocolField": "TSG_FIELD_MAIL_ACCOUNT"
+ "objectType": "account"
+ "objectSubType": "account"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "[email protected]" \ No newline at end of file
diff --git a/other/data/security/mail/security-mail-allow-to-exactly-data.yaml b/other/data/security/mail/security-mail-allow-to-exactly-data.yaml
new file mode 100644
index 0000000..c6fda82
--- /dev/null
+++ b/other/data/security/mail/security-mail-allow-to-exactly-data.yaml
@@ -0,0 +1,46 @@
+#注意keywordArray下的关键字必须为数组形式
+"allow-to-exactly_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-mail-allow-to-exactly-0001"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "isGre": 0
+ "action": "allow"
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 1
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "mail"
+ "appIdObjects":
+ - "mail"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "smtpServer": "default"
+ "mailFrom": "default"
+ "mailTo": "[email protected]"
+ "mailPassword": "default"
+ "mailMessagePath" : "/mailTestFile/mailMessage/subjectEnglish.txt"
+ "mailAttachPath" : "/mailTestFile/mailAttach/mail_test_english.txt"
+ "hopeResult": "root"
+ "hopeSuccessNumber": 1
+ "logQueryParam":
+ -
+ "queryFiledKey": "mail_from_cmd"
+ "queryValue": "[email protected]"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_MAIL_TO"
+ "objectType": "account"
+ "objectSubType": "account"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "[email protected]" \ No newline at end of file
diff --git a/other/data/security/mail/security-mail-allow-to-prefix-data.yaml b/other/data/security/mail/security-mail-allow-to-prefix-data.yaml
new file mode 100644
index 0000000..e96588f
--- /dev/null
+++ b/other/data/security/mail/security-mail-allow-to-prefix-data.yaml
@@ -0,0 +1,46 @@
+#注意keywordArray下的关键字必须为数组形式
+"allow-to-prefix_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-mail-allow-to-prefix-0001"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "isGre": 0
+ "action": "allow"
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 1
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "mail"
+ "appIdObjects":
+ - "mail"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "smtpServer": "default"
+ "mailFrom": "default"
+ "mailTo": "[email protected]"
+ "mailPassword": "default"
+ "mailMessagePath" : "/mailTestFile/mailMessage/subjectEnglish.txt"
+ "mailAttachPath" : "/mailTestFile/mailAttach/mail_test_english.txt"
+ "hopeResult": "root"
+ "hopeSuccessNumber": 1
+ "logQueryParam":
+ -
+ "queryFiledKey": "mail_from_cmd"
+ "queryValue": "[email protected]"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_MAIL_TO"
+ "objectType": "account"
+ "objectSubType": "account"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "autotest@1*" \ No newline at end of file
diff --git a/other/data/security/mail/security-mail-allow-to-substring-data.yaml b/other/data/security/mail/security-mail-allow-to-substring-data.yaml
new file mode 100644
index 0000000..ddad1b0
--- /dev/null
+++ b/other/data/security/mail/security-mail-allow-to-substring-data.yaml
@@ -0,0 +1,46 @@
+#注意keywordArray下的关键字必须为数组形式
+"allow-to-substring_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-mail-allow-to-prefix-0001"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "isGre": 0
+ "action": "allow"
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 1
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "mail"
+ "appIdObjects":
+ - "mail"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "smtpServer": "default"
+ "mailFrom": "default"
+ "mailTo": "[email protected]"
+ "mailPassword": "default"
+ "mailMessagePath" : "/mailTestFile/mailMessage/subjectEnglish.txt"
+ "mailAttachPath" : "/mailTestFile/mailAttach/mail_test_english.txt"
+ "hopeResult": "root"
+ "hopeSuccessNumber": 1
+ "logQueryParam":
+ -
+ "queryFiledKey": "mail_from_cmd"
+ "queryValue": "[email protected]"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_MAIL_TO"
+ "objectType": "account"
+ "objectSubType": "account"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "[email protected]" \ No newline at end of file
diff --git a/other/data/security/mail/security-mail-allow-to-suffix-data.yaml b/other/data/security/mail/security-mail-allow-to-suffix-data.yaml
new file mode 100644
index 0000000..dae7730
--- /dev/null
+++ b/other/data/security/mail/security-mail-allow-to-suffix-data.yaml
@@ -0,0 +1,46 @@
+#注意keywordArray下的关键字必须为数组形式
+"allow-to-suffix_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-mail-allow-to-exactly-0001"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "isGre": 0
+ "action": "allow"
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 1
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "mail"
+ "appIdObjects":
+ - "mail"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "smtpServer": "default"
+ "mailFrom": "default"
+ "mailTo": "[email protected]"
+ "mailPassword": "default"
+ "mailMessagePath" : "/mailTestFile/mailMessage/subjectEnglish.txt"
+ "mailAttachPath" : "/mailTestFile/mailAttach/mail_test_english.txt"
+ "hopeResult": "root"
+ "hopeSuccessNumber": 1
+ "logQueryParam":
+ -
+ "queryFiledKey": "mail_from_cmd"
+ "queryValue": "[email protected]"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_MAIL_TO"
+ "objectType": "account"
+ "objectSubType": "account"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "*[email protected]" \ No newline at end of file
diff --git a/other/data/security/mail/security-mail-deny-account-exactly-data.yaml b/other/data/security/mail/security-mail-deny-account-exactly-data.yaml
index 08a3dcd..13bfd8e 100644
--- a/other/data/security/mail/security-mail-deny-account-exactly-data.yaml
+++ b/other/data/security/mail/security-mail-deny-account-exactly-data.yaml
@@ -32,7 +32,7 @@
"hopeSuccessNumber": 1
"logQueryParam":
-
- "queryFiledKey": "mail_from"
+ "queryFiledKey": "mail_account"
"queryValue": "[email protected]"
"isValid": 1
"scheduleId":
@@ -78,7 +78,7 @@
"hopeSuccessNumber": 1
"logQueryParam":
-
- "queryFiledKey": "mail_from"
+ "queryFiledKey": "mail_account"
"queryValue": "[email protected]"
"isValid": 1
"scheduleId":
@@ -125,7 +125,7 @@
"hopeSuccessNumber": 1
"logQueryParam":
-
- "queryFiledKey": "mail_from"
+ "queryFiledKey": "mail_account"
"queryValue": "[email protected]"
"isValid": 1
"scheduleId":
@@ -170,7 +170,7 @@
"hopeSuccessNumber": 1
"logQueryParam":
-
- "queryFiledKey": "mail_from"
+ "queryFiledKey": "mail_account"
"queryValue": "[email protected]"
"isValid": 1
"scheduleId":
@@ -182,4 +182,49 @@
"objectList":
- "addItemList":
- "keywordArray":
- - "[email protected]" \ No newline at end of file
+ - "[email protected]"
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-mail-deny-account-exactly-0005"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "isGre": 0
+ "action": "deny"
+ "method": "reset"
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 0
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "mail"
+ "appIdObjects":
+ - "mail"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "smtpServer": "default"
+ "mailFrom": "default"
+ "mailTo": "[email protected]"
+ "mailPassword": "default"
+ "mailMessagePath" : "/mailTestFile/mailMessage/subjectEnglish.txt"
+ "mailAttachPath" : "/mailTestFile/mailAttach/mail_test_english.txt"
+ "hopeResult": "Connection reset by peer"
+ "hopeSuccessNumber": 1
+ "logQueryParam":
+ -
+ "queryFiledKey": "mail_account"
+ "queryValue": "empty"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_MAIL_ACCOUNT"
+ "objectType": "account"
+ "objectSubType": "account"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "[email protected]" \ No newline at end of file
diff --git a/other/data/security/mail/security-mail-deny-account-prefix-data.yaml b/other/data/security/mail/security-mail-deny-account-prefix-data.yaml
index cdb2cdc..8d49567 100644
--- a/other/data/security/mail/security-mail-deny-account-prefix-data.yaml
+++ b/other/data/security/mail/security-mail-deny-account-prefix-data.yaml
@@ -32,7 +32,7 @@
"hopeSuccessNumber": 1
"logQueryParam":
-
- "queryFiledKey": "mail_from"
+ "queryFiledKey": "mail_account"
"queryValue": "[email protected]"
"isValid": 1
"scheduleId":
@@ -78,7 +78,7 @@
"hopeSuccessNumber": 1
"logQueryParam":
-
- "queryFiledKey": "mail_from"
+ "queryFiledKey": "mail_account"
"queryValue": "[email protected]"
"isValid": 1
"scheduleId":
@@ -121,11 +121,11 @@
"mailPassword": "default"
"mailMessagePath" : "/mailTestFile/mailMessage/subjectEnglish.txt"
"mailAttachPath" : "/mailTestFile/mailAttach/mail_test_english.txt"
- "hopeResult": "root"
+ "hopeResult": "timed out"
"hopeSuccessNumber": 1
"logQueryParam":
-
- "queryFiledKey": "mail_from"
+ "queryFiledKey": "mail_account"
"queryValue": "[email protected]"
"isValid": 1
"scheduleId":
diff --git a/other/data/security/mail/security-mail-deny-account-substring-data.yaml b/other/data/security/mail/security-mail-deny-account-substring-data.yaml
index 0bba7dd..516f740 100644
--- a/other/data/security/mail/security-mail-deny-account-substring-data.yaml
+++ b/other/data/security/mail/security-mail-deny-account-substring-data.yaml
@@ -32,7 +32,7 @@
"hopeSuccessNumber": 1
"logQueryParam":
-
- "queryFiledKey": "mail_from"
+ "queryFiledKey": "mail_account"
"queryValue": "[email protected]"
"isValid": 1
"scheduleId":
@@ -78,7 +78,7 @@
"hopeSuccessNumber": 1
"logQueryParam":
-
- "queryFiledKey": "mail_from"
+ "queryFiledKey": "mail_account"
"queryValue": "[email protected]"
"isValid": 1
"scheduleId":
@@ -121,11 +121,11 @@
"mailPassword": "default"
"mailMessagePath" : "/mailTestFile/mailMessage/subjectEnglish.txt"
"mailAttachPath" : "/mailTestFile/mailAttach/mail_test_english.txt"
- "hopeResult": "root"
+ "hopeResult": "timed out"
"hopeSuccessNumber": 1
"logQueryParam":
-
- "queryFiledKey": "mail_from"
+ "queryFiledKey": "mail_account"
"queryValue": "[email protected]"
"isValid": 1
"scheduleId":
diff --git a/other/data/security/mail/security-mail-deny-account-suffix-data.yaml b/other/data/security/mail/security-mail-deny-account-suffix-data.yaml
index 011cef7..cfc2fa2 100644
--- a/other/data/security/mail/security-mail-deny-account-suffix-data.yaml
+++ b/other/data/security/mail/security-mail-deny-account-suffix-data.yaml
@@ -32,7 +32,7 @@
"hopeSuccessNumber": 1
"logQueryParam":
-
- "queryFiledKey": "mail_from"
+ "queryFiledKey": "mail_account"
"queryValue": "[email protected]"
"isValid": 1
"scheduleId":
@@ -78,7 +78,7 @@
"hopeSuccessNumber": 1
"logQueryParam":
-
- "queryFiledKey": "mail_from"
+ "queryFiledKey": "mail_account"
"queryValue": "[email protected]"
"isValid": 1
"scheduleId":
@@ -121,11 +121,11 @@
"mailPassword": "default"
"mailMessagePath" : "/mailTestFile/mailMessage/subjectEnglish.txt"
"mailAttachPath" : "/mailTestFile/mailAttach/mail_test_english.txt"
- "hopeResult": "root"
+ "hopeResult": "timed out"
"hopeSuccessNumber": 1
"logQueryParam":
-
- "queryFiledKey": "mail_from"
+ "queryFiledKey": "mail_account"
"queryValue": "[email protected]"
"isValid": 1
"scheduleId":
diff --git a/other/data/security/mail/security-mail-deny-attachmentname-exactly-data.yaml b/other/data/security/mail/security-mail-deny-attachmentname-exactly-data.yaml
index 08f6b82..6700733 100644
--- a/other/data/security/mail/security-mail-deny-attachmentname-exactly-data.yaml
+++ b/other/data/security/mail/security-mail-deny-attachmentname-exactly-data.yaml
@@ -275,4 +275,49 @@
"objectList":
- "addItemList":
- "keywordArray":
- - "$mail_test_russia.txt" \ No newline at end of file
+ - "$mail_test_russia.txt"
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-mail-deny-attachmentname-exactly-0005"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "isGre": 0
+ "action": "deny"
+ "method": "reset"
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 0
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "mail"
+ "appIdObjects":
+ - "mail"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "smtpServer": "default"
+ "mailFrom": "default"
+ "mailTo": "[email protected]"
+ "mailPassword": "default"
+ "mailMessagePath" : "/mailTestFile/mailMessage/subjectEnglish.txt"
+ "mailAttachPath" : "/mailTestFile/mailAttach/mail_test_russia.txt"
+ "hopeResult": "Connection reset by peer"
+ "hopeSuccessNumber": 1
+ "logQueryParam":
+ -
+ "queryFiledKey": "mail_from"
+ "queryValue": "empty"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_MAIL_ATT_NAME"
+ "objectType": "keywords"
+ "objectSubType": "keywords"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "$mail_test_russia.txt" \ No newline at end of file
diff --git a/other/data/security/mail/security-mail-deny-only-IpAndApplication-data.yaml b/other/data/security/mail/security-mail-deny-only-IpAndApplication-data.yaml
index 119d31d..8245b71 100644
--- a/other/data/security/mail/security-mail-deny-only-IpAndApplication-data.yaml
+++ b/other/data/security/mail/security-mail-deny-only-IpAndApplication-data.yaml
@@ -1,9 +1,9 @@
#注意keywordArray下的关键字必须为数组形式
-"deny-only-IpAndApplication_data":
+"deny-reset-update-block-550-only-IpAndApplication_data":
-
"opAction": "add"
"returnData": 1
- "policyName": "security-mail-deny-only-IpAndApplication-0001"
+ "policyName": "security-mail-deny-reset-only-IpAndApplication"
"policyType": "tsg_security"
"logType": "security_event"
"isGre": 0
@@ -49,7 +49,7 @@
-
"opAction": "update"
"returnData": 1
- "policyName": "security-mail-deny-only-IpAndApplication-0001-1"
+ "policyName": "security-mail-deny-block-550-only-IpAndApplication"
"policyType": "tsg_security"
"logType": "security_event"
"isGre": 0
@@ -94,10 +94,59 @@
-
"ip": "1.1.1.1"
"port": "0-65535"
+"deny-block-550-only-IpAndApplication_data":
-
"opAction": "add"
"returnData": 1
- "policyName": "security-mail-deny-only-IpAndApplication-0002"
+ "policyName": "security-mail-deny-block-550-only-IpAndApplication"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "isGre": 0
+ "action": "deny"
+ "method": "block"
+ "code": 550
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 1
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "mail"
+ "appIdObjects":
+ - "mail"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "smtpServer": "default"
+ "mailFrom": "default"
+ "mailTo": "[email protected]"
+ "mailPassword": "default"
+ "mailMessagePath" : "/mailTestFile/mailMessage/subjectEnglish.txt"
+ "mailAttachPath" : "/mailTestFile/mailAttach/mail_test_russia.txt"
+ "hopeResult": "Connection reset by peer"
+ "hopeSuccessNumber": 1
+ "logQueryParam":
+ -
+ "queryFiledKey": "common_schema_type"
+ "queryValue": "MAIL"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_SECURITY_SOURCE_ADDR"
+ "objectType": "ip"
+ "objectSubType": "endpoint"
+ "objectList":
+ - "addItemList":
+ -
+ "ip": "1.1.1.1"
+ "port": "0-65535"
+"deny-block-551-only-IpAndApplication_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-mail-deny-block-551-only-IpAndApplication"
"policyType": "tsg_security"
"logType": "security_event"
"isGre": 0
@@ -141,10 +190,11 @@
-
"ip": "1.1.1.1"
"port": "0-65535"
+"deny-rate-little-update-big-only-IpAndApplication_data":
-
"opAction": "add"
"returnData": 1
- "policyName": "security-mail-deny-only-IpAndApplication-0003"
+ "policyName": "security-mail-deny-rate-little-only-IpAndApplication"
"policyType": "tsg_security"
"logType": "security_event"
"isGre": 0
@@ -191,7 +241,7 @@
-
"opAction": "update"
"returnData": 1
- "policyName": "security-mail-deny-only-IpAndApplication-0003-1"
+ "policyName": "security-mail-deny-rate-big-only-IpAndApplication"
"policyType": "tsg_security"
"logType": "security_event"
"isGre": 0
@@ -235,11 +285,60 @@
- "addItemList":
-
"ip": "1.1.1.1"
- "port": "0-65535"
+ "port": "0-65535"
+"deny-rate-big-only-IpAndApplication_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-mail-deny-rate-big-only-IpAndApplication"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "isGre": 0
+ "action": "deny"
+ "method": "rate_limit"
+ "bps": 10000000
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 1
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "mail"
+ "appIdObjects":
+ - "mail"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "smtpServer": "default"
+ "mailFrom": "default"
+ "mailTo": "[email protected]"
+ "mailPassword": "default"
+ "mailMessagePath" : "/mailTestFile/mailMessage/subjectEnglish.txt"
+ "mailAttachPath" : "/mailTestFile/mailAttach/mail_test_english.txt"
+ "hopeResult": "timed out"
+ "hopeSuccessNumber": 1
+ "logQueryParam":
+ -
+ "queryFiledKey": "common_schema_type"
+ "queryValue": "MAIL"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_SECURITY_SOURCE_ADDR"
+ "objectType": "ip"
+ "objectSubType": "endpoint"
+ "objectList":
+ - "addItemList":
+ -
+ "ip": "1.1.1.1"
+ "port": "0-65535"
+"deny-tamper-only-IpAndApplication_data":
-
"opAction": "add"
"returnData": 1
- "policyName": "security-mail-deny-only-IpAndApplication-0004"
+ "policyName": "security-mail-deny-tamper-only-IpAndApplication"
"policyType": "tsg_security"
"logType": "security_event"
"isGre": 0
diff --git a/other/data/security/mail/security-mail-deny-subject-exactly-data.yaml b/other/data/security/mail/security-mail-deny-subject-exactly-data.yaml
index 1e0b0e5..abcb500 100644
--- a/other/data/security/mail/security-mail-deny-subject-exactly-data.yaml
+++ b/other/data/security/mail/security-mail-deny-subject-exactly-data.yaml
@@ -275,4 +275,49 @@
"objectList":
- "addItemList":
- "keywordArray":
- - "$Bestman" \ No newline at end of file
+ - "$Bestman"
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-mail-deny-subject-exactly-0005"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "isGre": 0
+ "action": "deny"
+ "method": "reset"
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 0
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "mail"
+ "appIdObjects":
+ - "mail"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "smtpServer": "default"
+ "mailFrom": "default"
+ "mailTo": "[email protected]"
+ "mailPassword": "default"
+ "mailMessagePath" : "/mailTestFile/mailMessage/subjectEnglish.txt"
+ "mailAttachPath" : "/mailTestFile/mailAttach/mail_test_english.txt"
+ "hopeResult": "Connection reset by peer"
+ "hopeSuccessNumber": 1
+ "logQueryParam":
+ -
+ "queryFiledKey": "mail_from"
+ "queryValue": "empty"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_MAIL_SUBJECT"
+ "objectType": "keywords"
+ "objectSubType": "keywords"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "$Bestman" \ No newline at end of file
diff --git a/other/data/security/mail/security-mail-deny-subject-prefix-data.yaml b/other/data/security/mail/security-mail-deny-subject-prefix-data.yaml
index 12f2748..109a801 100644
--- a/other/data/security/mail/security-mail-deny-subject-prefix-data.yaml
+++ b/other/data/security/mail/security-mail-deny-subject-prefix-data.yaml
@@ -275,4 +275,49 @@
"objectList":
- "addItemList":
- "keywordArray":
- - "Bestm*" \ No newline at end of file
+ - "Bestm*"
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-mail-deny-subject-prefix-0001"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "isGre": 0
+ "action": "deny"
+ "method": "reset"
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 0
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "mail"
+ "appIdObjects":
+ - "mail"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "smtpServer": "default"
+ "mailFrom": "default"
+ "mailTo": "[email protected]"
+ "mailPassword": "default"
+ "mailMessagePath" : "/mailTestFile/mailMessage/subjectEnglish.txt"
+ "mailAttachPath" : "/mailTestFile/mailAttach/mail_test_english.txt"
+ "hopeResult": "Connection reset by peer"
+ "hopeSuccessNumber": 1
+ "logQueryParam":
+ -
+ "queryFiledKey": "mail_from"
+ "queryValue": "empty"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_MAIL_SUBJECT"
+ "objectType": "keywords"
+ "objectSubType": "keywords"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "Bestm*" \ No newline at end of file
diff --git a/other/data/security/mail/security-mail-deny-subject-substring-data.yaml b/other/data/security/mail/security-mail-deny-subject-substring-data.yaml
index de130bd..f6196cb 100644
--- a/other/data/security/mail/security-mail-deny-subject-substring-data.yaml
+++ b/other/data/security/mail/security-mail-deny-subject-substring-data.yaml
@@ -275,4 +275,49 @@
"objectList":
- "addItemList":
- "keywordArray":
+ - "Bestman"
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-mail-deny-subject-substring-0001"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "isGre": 0
+ "action": "deny"
+ "method": "reset"
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 0
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "mail"
+ "appIdObjects":
+ - "mail"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "smtpServer": "default"
+ "mailFrom": "default"
+ "mailTo": "[email protected]"
+ "mailPassword": "default"
+ "mailMessagePath" : "/mailTestFile/mailMessage/subjectEnglish.txt"
+ "mailAttachPath" : "/mailTestFile/mailAttach/mail_test_english.txt"
+ "hopeResult": "Connection reset by peer"
+ "hopeSuccessNumber": 1
+ "logQueryParam":
+ -
+ "queryFiledKey": "mail_from"
+ "queryValue": "empty"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_MAIL_SUBJECT"
+ "objectType": "keywords"
+ "objectSubType": "keywords"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
- "Bestman" \ No newline at end of file
diff --git a/other/data/security/mail/security-mail-deny-subject-suffix-data.yaml b/other/data/security/mail/security-mail-deny-subject-suffix-data.yaml
index 4fc4858..6ab567a 100644
--- a/other/data/security/mail/security-mail-deny-subject-suffix-data.yaml
+++ b/other/data/security/mail/security-mail-deny-subject-suffix-data.yaml
@@ -1,9 +1,9 @@
#注意keywordArray下的关键字必须为数组形式
-"deny-subject-suffix_data":
+"deny-reset-update-block550-subject-suffix_data":
-
"opAction": "add"
"returnData": 1
- "policyName": "security-mail-deny-subject-suffix-0001"
+ "policyName": "security-mail-deny-reset-subject-suffix"
"policyType": "tsg_security"
"logType": "security_event"
"isGre": 0
@@ -48,7 +48,7 @@
-
"opAction": "update"
"returnData": 1
- "policyName": "security-mail-deny-subject-suffix-0001-1"
+ "policyName": "security-mail-deny-block550-subject-suffix"
"policyType": "tsg_security"
"logType": "security_event"
"isGre": 0
@@ -91,11 +91,59 @@
"objectList":
- "addItemList":
- "keywordArray":
- - "*stman"
+ - "*stman"
+"deny-block550-subject-suffix_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-mail-deny-block550-subject-suffix"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "isGre": 0
+ "action": "deny"
+ "method": "block"
+ "code": 550
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 1
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "mail"
+ "appIdObjects":
+ - "mail"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "smtpServer": "default"
+ "mailFrom": "default"
+ "mailTo": "[email protected]"
+ "mailPassword": "default"
+ "mailMessagePath" : "/mailTestFile/mailMessage/subjectEnglish.txt"
+ "mailAttachPath" : "/mailTestFile/mailAttach/mail_test_english.txt"
+ "hopeResult": "Failure"
+ "hopeSuccessNumber": 1
+ "logQueryParam":
+ -
+ "queryFiledKey": "mail_from"
+ "queryValue": "[email protected]"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_MAIL_SUBJECT"
+ "objectType": "keywords"
+ "objectSubType": "keywords"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "*stman"
+"deny-block551-subject-suffix_data":
-
"opAction": "add"
"returnData": 1
- "policyName": "security-mail-deny-subject-suffix-0002"
+ "policyName": "security-mail-deny-block551-subject-suffix"
"policyType": "tsg_security"
"logType": "security_event"
"isGre": 0
@@ -137,7 +185,8 @@
"objectList":
- "addItemList":
- "keywordArray":
- - "*stman"
+ - "*stman"
+"deny-rate-little-update-big-subject-suffix_data":
-
"opAction": "add"
"returnData": 1
@@ -230,7 +279,55 @@
"objectList":
- "addItemList":
- "keywordArray":
- - "*stman"
+ - "*stman"
+"deny-rate-big-subject-suffix_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-mail-deny-subject-suffix-0003-1"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "isGre": 0
+ "action": "deny"
+ "method": "rate_limit"
+ "bps": 10000000
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 1
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "mail"
+ "appIdObjects":
+ - "mail"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "smtpServer": "default"
+ "mailFrom": "default"
+ "mailTo": "[email protected]"
+ "mailPassword": "default"
+ "mailMessagePath" : "/mailTestFile/mailMessage/subjectEnglish.txt"
+ "mailAttachPath" : "/mailTestFile/mailAttach/mail_test_english.txt"
+ "hopeResult": "timeout"
+ "hopeSuccessNumber": 1
+ "logQueryParam":
+ -
+ "queryFiledKey": "mail_from"
+ "queryValue": "[email protected]"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_MAIL_SUBJECT"
+ "objectType": "keywords"
+ "objectSubType": "keywords"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "*stman"
+"deny-tamper-subject-suffix_data":
-
"opAction": "add"
"returnData": 1
diff --git a/other/data/security/mail/security-mail-deny-to-exactly-data.yaml b/other/data/security/mail/security-mail-deny-to-exactly-data.yaml
index 55b9cb2..dd39bb8 100644
--- a/other/data/security/mail/security-mail-deny-to-exactly-data.yaml
+++ b/other/data/security/mail/security-mail-deny-to-exactly-data.yaml
@@ -32,8 +32,8 @@
"hopeSuccessNumber": 1
"logQueryParam":
-
- "queryFiledKey": "mail_from"
- "queryValue": "[email protected]"
+ "queryFiledKey": "mail_to_cmd"
+ "queryValue": "[email protected]"
"isValid": 1
"scheduleId":
"condation":
@@ -78,8 +78,8 @@
"hopeSuccessNumber": 1
"logQueryParam":
-
- "queryFiledKey": "mail_from"
- "queryValue": "[email protected]"
+ "queryFiledKey": "mail_to_cmd"
+ "queryValue": "[email protected]"
"isValid": 1
"scheduleId":
"condation":
@@ -125,8 +125,8 @@
"hopeSuccessNumber": 1
"logQueryParam":
-
- "queryFiledKey": "mail_from"
- "queryValue": "[email protected]"
+ "queryFiledKey": "mail_to_cmd"
+ "queryValue": "[email protected]"
"isValid": 1
"scheduleId":
"condation":
@@ -170,8 +170,8 @@
"hopeSuccessNumber": 1
"logQueryParam":
-
- "queryFiledKey": "mail_from"
- "queryValue": "[email protected]"
+ "queryFiledKey": "mail_to_cmd"
+ "queryValue": "[email protected]"
"isValid": 1
"scheduleId":
"condation":
@@ -182,4 +182,49 @@
"objectList":
- "addItemList":
- "keywordArray":
- - "[email protected]" \ No newline at end of file
+ - "[email protected]"
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-mail-deny-to-exactly-0001"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "isGre": 0
+ "action": "deny"
+ "method": "reset"
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 0
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "mail"
+ "appIdObjects":
+ - "mail"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "smtpServer": "default"
+ "mailFrom": "default"
+ "mailTo": "[email protected]"
+ "mailPassword": "default"
+ "mailMessagePath" : "/mailTestFile/mailMessage/subjectEnglish.txt"
+ "mailAttachPath" : "/mailTestFile/mailAttach/mail_test_english.txt"
+ "hopeResult": "Connection reset by peer"
+ "hopeSuccessNumber": 1
+ "logQueryParam":
+ -
+ "queryFiledKey": "mail_to_cmd"
+ "queryValue": "empty"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_MAIL_TO"
+ "objectType": "account"
+ "objectSubType": "account"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "[email protected]" \ No newline at end of file
diff --git a/other/data/security/mail/security-mail-deny-to-prefix-data.yaml b/other/data/security/mail/security-mail-deny-to-prefix-data.yaml
index 77b8c5b..b0eab9f 100644
--- a/other/data/security/mail/security-mail-deny-to-prefix-data.yaml
+++ b/other/data/security/mail/security-mail-deny-to-prefix-data.yaml
@@ -32,8 +32,8 @@
"hopeSuccessNumber": 1
"logQueryParam":
-
- "queryFiledKey": "mail_from"
- "queryValue": "[email protected]"
+ "queryFiledKey": "mail_to_cmd"
+ "queryValue": "[email protected]"
"isValid": 1
"scheduleId":
"condation":
@@ -78,8 +78,8 @@
"hopeSuccessNumber": 1
"logQueryParam":
-
- "queryFiledKey": "mail_from"
- "queryValue": "[email protected]"
+ "queryFiledKey": "mail_to_cmd"
+ "queryValue": "[email protected]"
"isValid": 1
"scheduleId":
"condation":
@@ -121,12 +121,12 @@
"mailPassword": "default"
"mailMessagePath" : "/mailTestFile/mailMessage/subjectEnglish.txt"
"mailAttachPath" : "/mailTestFile/mailAttach/mail_test_english.txt"
- "hopeResult": "root"
+ "hopeResult": "timed out"
"hopeSuccessNumber": 1
"logQueryParam":
-
- "queryFiledKey": "mail_from"
- "queryValue": "[email protected]"
+ "queryFiledKey": "mail_to_cmd"
+ "queryValue": "[email protected]"
"isValid": 1
"scheduleId":
"condation":
diff --git a/other/data/security/mail/security-mail-deny-to-substring-data.yaml b/other/data/security/mail/security-mail-deny-to-substring-data.yaml
index e5f3b87..5d4912e 100644
--- a/other/data/security/mail/security-mail-deny-to-substring-data.yaml
+++ b/other/data/security/mail/security-mail-deny-to-substring-data.yaml
@@ -32,8 +32,8 @@
"hopeSuccessNumber": 1
"logQueryParam":
-
- "queryFiledKey": "mail_from"
- "queryValue": "[email protected]"
+ "queryFiledKey": "mail_to_cmd"
+ "queryValue": "[email protected]"
"isValid": 1
"scheduleId":
"condation":
@@ -78,8 +78,8 @@
"hopeSuccessNumber": 1
"logQueryParam":
-
- "queryFiledKey": "mail_from"
- "queryValue": "[email protected]"
+ "queryFiledKey": "mail_to_cmd"
+ "queryValue": "[email protected]"
"isValid": 1
"scheduleId":
"condation":
@@ -121,12 +121,12 @@
"mailPassword": "default"
"mailMessagePath" : "/mailTestFile/mailMessage/subjectEnglish.txt"
"mailAttachPath" : "/mailTestFile/mailAttach/mail_test_english.txt"
- "hopeResult": "root"
+ "hopeResult": "timed out"
"hopeSuccessNumber": 1
"logQueryParam":
-
- "queryFiledKey": "mail_from"
- "queryValue": "[email protected]"
+ "queryFiledKey": "mail_to_cmd"
+ "queryValue": "[email protected]"
"isValid": 1
"scheduleId":
"condation":
diff --git a/other/data/security/mail/security-mail-deny-to-suffix-data.yaml b/other/data/security/mail/security-mail-deny-to-suffix-data.yaml
index 5345735..60f71c3 100644
--- a/other/data/security/mail/security-mail-deny-to-suffix-data.yaml
+++ b/other/data/security/mail/security-mail-deny-to-suffix-data.yaml
@@ -32,8 +32,8 @@
"hopeSuccessNumber": 1
"logQueryParam":
-
- "queryFiledKey": "mail_from"
- "queryValue": "[email protected]"
+ "queryFiledKey": "mail_to_cmd"
+ "queryValue": "[email protected]"
"isValid": 1
"scheduleId":
"condation":
@@ -78,8 +78,8 @@
"hopeSuccessNumber": 1
"logQueryParam":
-
- "queryFiledKey": "mail_from"
- "queryValue": "[email protected]"
+ "queryFiledKey": "mail_to_cmd"
+ "queryValue": "[email protected]"
"isValid": 1
"scheduleId":
"condation":
@@ -121,12 +121,12 @@
"mailPassword": "default"
"mailMessagePath" : "/mailTestFile/mailMessage/subjectEnglish.txt"
"mailAttachPath" : "/mailTestFile/mailAttach/mail_test_english.txt"
- "hopeResult": "root"
+ "hopeResult": "timed out"
"hopeSuccessNumber": 1
"logQueryParam":
-
- "queryFiledKey": "mail_from"
- "queryValue": "[email protected]"
+ "queryFiledKey": "mail_to_cmd"
+ "queryValue": "[email protected]"
"isValid": 1
"scheduleId":
"condation":
diff --git a/other/data/security/mail/security-mail-monitor-only-IpAndApplication-data.yaml b/other/data/security/mail/security-mail-monitor-only-IpAndApplication-data.yaml
index f4893c4..8494f43 100644
--- a/other/data/security/mail/security-mail-monitor-only-IpAndApplication-data.yaml
+++ b/other/data/security/mail/security-mail-monitor-only-IpAndApplication-data.yaml
@@ -23,11 +23,11 @@
"isTestMachine": 1
"testMachine":
-
- "smtpServer": "smtp.163.com"
- "mailFrom": "[email protected]"
- "mailTo": "[email protected]"
- "mailPassword": "DZGAMFOANHHSBGHF"
- "mailMessagePath" : "/mailTestFile/mailMessage/subject.txt"
+ "smtpServer": "default"
+ "mailFrom": "default"
+ "mailTo": "[email protected]"
+ "mailPassword": "default"
+ "mailMessagePath" : "/mailTestFile/mailMessage/subjectEnglish.txt"
"mailAttachPath" : "/mailTestFile/mailAttach/mail_test_english.txt"
"hopeResult": "root"
"hopeSuccessNumber": 1
diff --git a/other/data/security/mail/security-monitor-mail-log-verify-data.yaml b/other/data/security/mail/security-monitor-mail-log-verify-data.yaml
index 5690db4..a898a2b 100644
--- a/other/data/security/mail/security-monitor-mail-log-verify-data.yaml
+++ b/other/data/security/mail/security-monitor-mail-log-verify-data.yaml
@@ -160,6 +160,130 @@
"logQueryParam":
-
"queryFiledKey": "mail_eml_file"
+ "queryValue": "notEmpty"
+ -
+ "queryFiledKey": "common_packet_capture_file"
+ "queryValue": "hostip"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_MAIL_SUBJECT"
+ "objectType": "keywords"
+ "objectSubType": "keywords"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "Bestman"
+ -
+ "protocolField": "TSG_FIELD_MAIL_ACCOUNT"
+ "objectType": "account"
+ "objectSubType": "account"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "[email protected]"
+ -
+ "protocolField": "TSG_FIELD_MAIL_ATT_CONTENT"
+ "objectType": "keywords"
+ "objectSubType": "keywords"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "halashaogusina"
+ -
+ "protocolField": "TSG_FIELD_MAIL_ATT_NAME"
+ "objectType": "keywords"
+ "objectSubType": "keywords"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "test"
+ -
+ "protocolField": "TSG_FIELD_MAIL_SUBJECT"
+ "objectType": "keywords"
+ "objectSubType": "keywords"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "Bestman"
+ -
+ "protocolField": "TSG_FIELD_MAIL_FROM"
+ "objectType": "account"
+ "objectSubType": "account"
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "[email protected]"
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-mail-monitor-mail-log-verify-0001"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "isGre": 0
+ "action": "monitor"
+ "packet_mirror":
+ "enable": 0
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 0
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "mail"
+ "appIdObjects":
+ - "mail"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "logCapture": 1
+ "captureDepth": 4000
+ "testMachine":
+ -
+ "smtpServer": "default"
+ "mailFrom": "default"
+ "mailTo": "[email protected]"
+ "mailPassword": "default"
+ "mailMessagePath" : "/mailTestFile/mailMessage/subjectEnglish.txt"
+ "mailAttachPath" : "/mailTestFile/mailAttach/mail_test_english.txt"
+ "hopeResult": "root"
+ "hopeSuccessNumber": 1
+ "logQueryParam":
+ -
+ "queryFiledKey": "mail_from"
+ "queryValue": "empty"
+ -
+ "queryFiledKey": "mail_protocol_type"
+ "queryValue": "empty"
+ -
+ "queryFiledKey": "mail_account"
+ "queryValue": "empty"
+ -
+ "queryFiledKey": "mail_from_cmd"
+ "queryValue": "empty"
+ -
+ "queryFiledKey": "mail_to_cmd"
+ "queryValue": "empty"
+ -
+ "queryFiledKey": "mail_from"
+ "queryValue": "empty"
+ -
+ "queryFiledKey": "mail_to"
+ "queryValue": "empty"
+ -
+ "queryFiledKey": "mail_cc"
+ "queryValue": "empty"
+ -
+ "queryFiledKey": "mail_bcc"
+ "queryValue": "empty"
+ -
+ "queryFiledKey": "mail_subject"
+ "queryValue": "empty"
+ -
+ "queryFiledKey": "mail_attachment_name"
+ "queryValue": "empty"
+ -
+ "queryFiledKey": "mail_eml_file"
"queryValue": "empty"
-
"queryFiledKey": "common_packet_capture_file"
@@ -214,4 +338,4 @@
"objectList":
- "addItemList":
- "keywordArray":
- - "[email protected]" \ No newline at end of file
+ - "[email protected]" \ No newline at end of file
diff --git a/other/data/security/ssl/security-ssl-allow-cn-exactly-data.yaml b/other/data/security/ssl/security-ssl-allow-cn-exactly-data.yaml
index d3d8bd5..9437675 100644
--- a/other/data/security/ssl/security-ssl-allow-cn-exactly-data.yaml
+++ b/other/data/security/ssl/security-ssl-allow-cn-exactly-data.yaml
@@ -22,16 +22,6 @@
"testMachine":
-
"hopeSuccessNumber": 1
- "command": "curl -kv https://www.freestockimages.ru/"
- "commandRes": "картинки"
- "schemaType": "ssl_sni"
- "schemaVerify": "www.freestockimages.ru"
- "logQueryParam":
- -
- "queryFiledKey": "ssl_sni"
- "queryValue": "www.freestockimages.ru"
- -
- "hopeSuccessNumber": 1
"command": "curl -kv https://www.wyhgh.com/"
"commandRes": "我要学习网"
"logQueryParam":
@@ -48,6 +38,4 @@
"objectList":
- "addItemList":
- "keywordArray":
- - "$freestockimages.ru"
- - "keywordArray":
- "$www.wyhgh.com" \ No newline at end of file
diff --git a/other/data/security/ssl/security-ssl-allow-cn-suffix-data.yaml b/other/data/security/ssl/security-ssl-allow-cn-suffix-data.yaml
index cc9d486..2ca5369 100644
--- a/other/data/security/ssl/security-ssl-allow-cn-suffix-data.yaml
+++ b/other/data/security/ssl/security-ssl-allow-cn-suffix-data.yaml
@@ -22,14 +22,6 @@
"testMachine":
-
"hopeSuccessNumber": 1
- "command": "curl -kv https://www.freestockimages.ru/"
- "commandRes": "картинки"
- "logQueryParam":
- -
- "queryFiledKey": "ssl_sni"
- "queryValue": "www.freestockimages.ru"
- -
- "hopeSuccessNumber": 1
"command": "curl -kv https://www.wyhgh.com/"
"commandRes": "我要学习网"
"logQueryParam":
@@ -46,6 +38,4 @@
"objectList":
- "addItemList":
- "keywordArray":
- - "*tockimages.ru"
- - "keywordArray":
- "*ww.wyhgh.com" \ No newline at end of file
diff --git a/other/data/security/ssl/security-ssl-allow-san-exactly-data.yaml b/other/data/security/ssl/security-ssl-allow-san-exactly-data.yaml
index 8d077c5..27b209e 100644
--- a/other/data/security/ssl/security-ssl-allow-san-exactly-data.yaml
+++ b/other/data/security/ssl/security-ssl-allow-san-exactly-data.yaml
@@ -22,12 +22,12 @@
"testMachine":
-
"hopeSuccessNumber": 1
- "command": "curl -kv https://www.freestockimages.ru/"
- "commandRes": "картинки"
+ "command": "curl -kv https://www.zakon.kz/"
+ "commandRes": "Новости"
"logQueryParam":
-
"queryFiledKey": "ssl_sni"
- "queryValue": "www.freestockimages.ru"
+ "queryValue": "zakon.kz"
"isValid": 1
"scheduleId":
"condation":
@@ -38,5 +38,5 @@
"objectList":
- "addItemList":
- "keywordArray":
- - "$freestockimages.ru"
+ - "$zakon.kz"
\ No newline at end of file
diff --git a/other/data/security/ssl/security-ssl-allow-san-suffix-data.yaml b/other/data/security/ssl/security-ssl-allow-san-suffix-data.yaml
index cf5cb22..b903560 100644
--- a/other/data/security/ssl/security-ssl-allow-san-suffix-data.yaml
+++ b/other/data/security/ssl/security-ssl-allow-san-suffix-data.yaml
@@ -22,12 +22,12 @@
"testMachine":
-
"hopeSuccessNumber": 1
- "command": "curl -kv https://www.freestockimages.ru/"
- "commandRes": "картинки"
+ "command": "curl -kv https://www.zakon.kz/"
+ "commandRes": "Новости"
"logQueryParam":
-
"queryFiledKey": "ssl_sni"
- "queryValue": "www.freestockimages.ru"
+ "queryValue": "zakon.kz"
"isValid": 1
"scheduleId":
"condation":
@@ -38,4 +38,4 @@
"objectList":
- "addItemList":
- "keywordArray":
- - "*tockimages.ru"
+ - "*zakon.kz"
diff --git a/other/data/security/ssl/security-ssl-deny-ssl-signature-data.yaml b/other/data/security/ssl/security-ssl-deny-ssl-signature-data.yaml
new file mode 100644
index 0000000..100c0d9
--- /dev/null
+++ b/other/data/security/ssl/security-ssl-deny-ssl-signature-data.yaml
@@ -0,0 +1,261 @@
+#注意keywordArray下的关键字必须为数组形式
+"deny-ssl-signature_data":
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-ssl-deny-ssl-signature"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "action": "deny"
+ "method": "reset"
+ "isGre": 0
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 1
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "testAutoApplication"
+ "appIdObjects":
+ - "testAutoApplication"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "hopeSuccessNumber": 1
+ "command": "curl --connect-timeout 10 -m 10 -kv https://www.prlib.ru"
+ "commandRes": "Connection reset by peer"
+ "schemaType": "ssl_sni"
+ "schemaVerify": "www.prlib.ru"
+ "logQueryParam":
+ -
+ "queryFiledKey": "ssl_sni"
+ "queryValue": "www.prlib.ru"
+ -
+ "hopeSuccessNumber": 1
+ "command": "curl --connect-timeout 10 -m 10 -kv https://www.hupu.com/"
+ "commandRes": "Connection reset by peer"
+ "schemaType": "ssl_sni"
+ "schemaVerify": "www.hupu.com"
+ "logQueryParam":
+ -
+ "queryFiledKey": "ssl_sni"
+ "queryValue": "www.hupu.com"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_SSL_SNI"
+ "objectType": "fqdn"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "*prlib.ru"
+ - "keywordArray":
+ - "*hupu.com"
+ -
+ "protocolField": "TSG_FIELD_SSL_SAN"
+ "objectType": "fqdn"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "*rlib.ru"
+ - "keywordArray":
+ - "*upu.com"
+ -
+ "protocolField": "TSG_FIELD_SSL_CN"
+ "objectType": "fqdn"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "*lib.ru"
+ - "keywordArray":
+ - "*pu.com"
+ -
+ "opAction": "update"
+ "returnData": 1
+ "policyName": "security-ssl-deny-fqdn-suffix-0003-1"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "action": "deny"
+ "isGre": 0
+ "method": "rate_limit"
+ "bps": 1
+ "userTags": ""
+ "doBlacklist": 0
+ "isEdit": 1
+ "doLog": 1
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "ssl"
+ "appIdObjects":
+ - "ssl"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "hopeSuccessNumber": 1
+ "command": "curl --connect-timeout 10 -m 10 -kv https://www.prlib.ru"
+ "commandRes": "Connection reset by peer"
+ "schemaType": "ssl_sni"
+ "schemaVerify": "www.prlib.ru"
+ "logQueryParam":
+ -
+ "queryFiledKey": "ssl_sni"
+ "queryValue": "www.prlib.ru"
+ -
+ "hopeSuccessNumber": 1
+ "command": "curl --connect-timeout 10 -m 10 -kv https://www.hupu.com/"
+ "commandRes": "Connection reset by peer"
+ "schemaType": "ssl_sni"
+ "schemaVerify": "www.hupu.com"
+ "logQueryParam":
+ -
+ "queryFiledKey": "ssl_sni"
+ "queryValue": "www.hupu.com"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_SSL_SNI"
+ "objectType": "fqdn"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "*prlib.ru"
+ - "keywordArray":
+ - "*hupu.com"
+ -
+ "protocolField": "TSG_FIELD_SSL_SAN"
+ "objectType": "fqdn"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "*rlib.ru"
+ - "keywordArray":
+ - "*upu.com"
+ -
+ "protocolField": "TSG_FIELD_SSL_CN"
+ "objectType": "fqdn"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "*ib.ru"
+ - "keywordArray":
+ - "*pu.com"
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-ssl-deny-fqdn-suffix-0001"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "action": "deny"
+ "method": "reset"
+ "isGre": 0
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 1
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "ssl"
+ "appIdObjects":
+ - "ssl"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "hopeSuccessNumber": 1
+ "command": "curl --connect-timeout 10 -m 10 -kv https://telegram.org/"
+ "commandRes": "Connection reset by peer"
+ "schemaType": "ssl_sni"
+ "schemaVerify": "telegram.org"
+ "logQueryParam":
+ -
+ "queryFiledKey": "ssl_sni"
+ "queryValue": "telegram.org"
+ -
+ "hopeSuccessNumber": 1
+ "command": "curl --connect-timeout 10 -m 10 -kv https://www.bilibili.com/"
+ "commandRes": "Connection reset by peer"
+ "schemaType": "ssl_sni"
+ "schemaVerify": "www.bilibili.com"
+ "logQueryParam":
+ -
+ "queryFiledKey": "ssl_sni"
+ "queryValue": "www.bilibili.com"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_SSL_SNI"
+ "objectType": "fqdn"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "*legram.org"
+ - "keywordArray":
+ - "*ilibili.com"
+ -
+ "opAction": "add"
+ "returnData": 1
+ "policyName": "security-ssl-deny-fqdn-suffix-0002"
+ "policyType": "tsg_security"
+ "logType": "security_event"
+ "action": "deny"
+ "isGre": 0
+ "method": "tamper"
+ "userTags": ""
+ "doBlacklist": 0
+ "doLog": 1
+ "policyDesc": "autotest"
+ "effectiveRange":
+ "userRegion":
+ "protocol": "ssl"
+ "appIdObjects":
+ - "ssl"
+ "appSelectorObjects":
+ "isTestMachine": 1
+ "testMachine":
+ -
+ "hopeSuccessNumber": 1
+ "command": "curl --connect-timeout 10 -m 10 -kv https://telegram.org/"
+ "commandRes": "Connection reset by peer"
+ "schemaType": "ssl_sni"
+ "schemaVerify": "telegram.org"
+ "logQueryParam":
+ -
+ "queryFiledKey": "ssl_sni"
+ "queryValue": "telegram.org"
+ -
+ "hopeSuccessNumber": 1
+ "command": "curl --connect-timeout 10 -m 10 -kv https://www.bilibili.com/"
+ "commandRes": "Connection reset by peer"
+ "schemaType": "ssl_sni"
+ "schemaVerify": "www.bilibili.com"
+ "logQueryParam":
+ -
+ "queryFiledKey": "ssl_sni"
+ "queryValue": "www.bilibili.com"
+ "isValid": 1
+ "scheduleId":
+ "condation":
+ -
+ "protocolField": "TSG_FIELD_SSL_SNI"
+ "objectType": "fqdn"
+ "objectSubType": ""
+ "objectList":
+ - "addItemList":
+ - "keywordArray":
+ - "*legram.org"
+ - "keywordArray":
+ - "*ilibili.com"
+ \ No newline at end of file
diff --git a/other/data/security/ssl/security-ssl-monitor-fqdn-exactly-data.yaml b/other/data/security/ssl/security-ssl-monitor-fqdn-exactly-data.yaml
index cb82806..621a4f0 100644
--- a/other/data/security/ssl/security-ssl-monitor-fqdn-exactly-data.yaml
+++ b/other/data/security/ssl/security-ssl-monitor-fqdn-exactly-data.yaml
@@ -61,62 +61,3 @@
- "$www.bilibili.com"
- "keywordArray":
- "$tengrinews.kz"
- -
- "opAction": "add"
- "returnData": 1
- "policyName": "security-ssl-monitor-fqdn-exactly-0002"
- "policyType": "tsg_security"
- "logType": "security_event"
- "action": "monitor"
- "packet_mirror":
- "enable": 0
- "isGre": 0
- "userTags": ""
- "doBlacklist": 0
- "doLog": 1
- "policyDesc": "autotest"
- "effectiveRange":
- "userRegion":
- "protocol": "ssl"
- "appIdObjects":
- - "ssl"
- "appSelectorObjects":
- "isTestMachine": 1
- "testMachine":
- -
- "hopeSuccessNumber": 1
- "command": "curl -kv https://www.freestockimages.ru/"
- "commandRes": "картинки"
- "schemaType": "ssl_sni"
- "schemaVerify": "www.freestockimages.ru"
- "logQueryParam":
- -
- "queryFiledKey": "ssl_sni"
- "queryValue": "www.freestockimages.ru"
- "isValid": 1
- "scheduleId":
- "condation":
- -
- "protocolField": "TSG_FIELD_SSL_SNI"
- "objectType": "fqdn"
- "objectSubType": ""
- "objectList":
- - "addItemList":
- - "keywordArray":
- - "$www.freestockimages.ru"
- -
- "protocolField": "TSG_FIELD_SSL_SAN"
- "objectType": "fqdn"
- "objectSubType": ""
- "objectList":
- - "addItemList":
- - "keywordArray":
- - "$freestockimages.ru"
- -
- "protocolField": "TSG_FIELD_SSL_CN"
- "objectType": "fqdn"
- "objectSubType": ""
- "objectList":
- - "addItemList":
- - "keywordArray":
- - "*eestockimages.ru"
diff --git a/other/data/security/ssl/security-ssl-monitor-fqdn-exactly-famousSites-data.yaml b/other/data/security/ssl/security-ssl-monitor-fqdn-exactly-famousSites-data.yaml
index aa8db83..d7e6f50 100644
--- a/other/data/security/ssl/security-ssl-monitor-fqdn-exactly-famousSites-data.yaml
+++ b/other/data/security/ssl/security-ssl-monitor-fqdn-exactly-famousSites-data.yaml
@@ -72,12 +72,12 @@
"testMachine":
-
"hopeSuccessNumber": 1
- "command": "curl -kv https://www.freestockimages.ru/"
- "commandRes": "картинки"
+ "command": "curl -kv https://www.zakon.kz/"
+ "commandRes": "Новости"
"logQueryParam":
-
"queryFiledKey": "ssl_sni"
- "queryValue": "www.freestockimages.ru"
+ "queryValue": "zakon.kz"
"isValid": 1
"scheduleId":
"condation":
@@ -88,7 +88,7 @@
"objectList":
- "addItemList":
- "keywordArray":
- - "$www.freestockimages.ru"
+ - "$www.zakon.kz"
-
"protocolField": "TSG_FIELD_SSL_SAN"
"objectType": "fqdn"
@@ -96,7 +96,7 @@
"objectList":
- "addItemList":
- "keywordArray":
- - "$freestockimages.ru"
+ - "$zakon.kz"
-
"protocolField": "TSG_FIELD_SSL_CN"
"objectType": "fqdn"
@@ -104,4 +104,4 @@
"objectList":
- "addItemList":
- "keywordArray":
- - "*eestockimages.ru"
+ - "*akon.kz"
diff --git a/other/data/security/ssl/security-ssl-monitor-fqdn-suffix-data.yaml b/other/data/security/ssl/security-ssl-monitor-fqdn-suffix-data.yaml
index 808ccde..1656746 100644
--- a/other/data/security/ssl/security-ssl-monitor-fqdn-suffix-data.yaml
+++ b/other/data/security/ssl/security-ssl-monitor-fqdn-suffix-data.yaml
@@ -85,12 +85,12 @@
"testMachine":
-
"hopeSuccessNumber": 1
- "command": "curl -kv https://www.freestockimages.ru/"
- "commandRes": "картинки"
+ "command": "curl -kv https://www.zakon.kz/"
+ "commandRes": "Новости"
"logQueryParam":
-
"queryFiledKey": "ssl_sni"
- "queryValue": "www.freestockimages.ru"
+ "queryValue": "zakon.kz"
"isValid": 1
"scheduleId":
"condation":
@@ -101,7 +101,7 @@
"objectList":
- "addItemList":
- "keywordArray":
- - "*w.freestockimages.ru"
+ - "*zakon.kz"
-
"protocolField": "TSG_FIELD_SSL_SAN"
"objectType": "fqdn"
@@ -109,7 +109,7 @@
"objectList":
- "addItemList":
- "keywordArray":
- - "*eestockimages.ru"
+ - "*kon.kz"
-
"protocolField": "TSG_FIELD_SSL_CN"
"objectType": "fqdn"
@@ -117,5 +117,5 @@
"objectList":
- "addItemList":
- "keywordArray":
- - "*estockimages.ru"
+ - "*on.kz"
\ No newline at end of file
diff --git a/other/data/security/ssl/security-ssl-monitor-fqdn-suffix-famousSites-data.yaml b/other/data/security/ssl/security-ssl-monitor-fqdn-suffix-famousSites-data.yaml
index 0dda166..e78f383 100644
--- a/other/data/security/ssl/security-ssl-monitor-fqdn-suffix-famousSites-data.yaml
+++ b/other/data/security/ssl/security-ssl-monitor-fqdn-suffix-famousSites-data.yaml
@@ -47,61 +47,4 @@
- "*youtube.com"
- "keywordArray":
- "*ter.com"
- -
- "opAction": "add"
- "returnData": 1
- "policyName": "security-ssl-monitor-fqdn-suffix-0002"
- "policyType": "tsg_security"
- "logType": "security_event"
- "action": "monitor"
- "packet_mirror":
- "enable": 0
- "isGre": 0
- "userTags": ""
- "doBlacklist": 0
- "doLog": 1
- "policyDesc": "autotest"
- "effectiveRange":
- "userRegion":
- "protocol": "ssl"
- "appIdObjects":
- - "ssl"
- "appSelectorObjects":
- "isTestMachine": 1
- "testMachine":
- -
- "hopeSuccessNumber": 1
- "command": "curl -kv https://www.freestockimages.ru/"
- "commandRes": "картинки"
- "logQueryParam":
- -
- "queryFiledKey": "ssl_sni"
- "queryValue": "www.freestockimages.ru"
- "isValid": 1
- "scheduleId":
- "condation":
- -
- "protocolField": "TSG_FIELD_SSL_SNI"
- "objectType": "fqdn"
- "objectSubType": ""
- "objectList":
- - "addItemList":
- - "keywordArray":
- - "*w.freestockimages.ru"
- -
- "protocolField": "TSG_FIELD_SSL_SAN"
- "objectType": "fqdn"
- "objectSubType": ""
- "objectList":
- - "addItemList":
- - "keywordArray":
- - "*eestockimages.ru"
- -
- "protocolField": "TSG_FIELD_SSL_CN"
- "objectType": "fqdn"
- "objectSubType": ""
- "objectList":
- - "addItemList":
- - "keywordArray":
- - "*estockimages.ru"
\ No newline at end of file
diff --git a/other/data/security/youtube/security-youtube-allow-only-IpAndApplication-login-data.yaml b/other/data/security/youtube/security-youtube-allow-only-IpAndApplication-login-data.yaml
index d36152c..fa59bec 100644
--- a/other/data/security/youtube/security-youtube-allow-only-IpAndApplication-login-data.yaml
+++ b/other/data/security/youtube/security-youtube-allow-only-IpAndApplication-login-data.yaml
@@ -15,7 +15,7 @@
"appTask":
-
"scriptSystem": "ios"
- "scriptModule": "iPhone12"
+ "scriptModule": "iphone12"
"taskDescr": "allow-only-IpAndApplication-login"
"appinfo":
"packageUrl": "http://fileupload.pro.testin.cn/group1/M00/00/62/Cipe2WEse9iASS0pAACUUGpu4ek233.ipa?filename=6bbde004-a5b5-4f6d-9ed8-9a60bd3fdcf7.ipa"
diff --git a/other/data/security/youtube/security-youtube-allow-only-IpAndApplication-playVideo-data.yaml b/other/data/security/youtube/security-youtube-allow-only-IpAndApplication-playVideo-data.yaml
index 1d1ba6b..929c5d5 100644
--- a/other/data/security/youtube/security-youtube-allow-only-IpAndApplication-playVideo-data.yaml
+++ b/other/data/security/youtube/security-youtube-allow-only-IpAndApplication-playVideo-data.yaml
@@ -15,7 +15,7 @@
"appTask":
-
"scriptSystem": "ios"
- "scriptModule": "iPhone12"
+ "scriptModule": "iphone12"
"taskDescr": "allow-only-IpAndApplication-playVideo"
"appinfo":
"packageUrl": "http://fileupload.pro.testin.cn/group1/M00/00/62/Cipe2WEse9iASS0pAACUUGpu4ek233.ipa?filename=6bbde004-a5b5-4f6d-9ed8-9a60bd3fdcf7.ipa"
diff --git a/other/data/security/youtube/security-youtube-allow-only-IpAndApplication-search-data.yaml b/other/data/security/youtube/security-youtube-allow-only-IpAndApplication-search-data.yaml
index 767c5cb..46ea61d 100644
--- a/other/data/security/youtube/security-youtube-allow-only-IpAndApplication-search-data.yaml
+++ b/other/data/security/youtube/security-youtube-allow-only-IpAndApplication-search-data.yaml
@@ -15,7 +15,7 @@
"appTask":
-
"scriptSystem": "ios"
- "scriptModule": "iPhone12"
+ "scriptModule": "iphone12"
"taskDescr": "allow-only-IpAndApplication-search"
"appinfo":
"packageUrl": "http://fileupload.pro.testin.cn/group1/M00/00/62/Cipe2WEse9iASS0pAACUUGpu4ek233.ipa?filename=6bbde004-a5b5-4f6d-9ed8-9a60bd3fdcf7.ipa"
diff --git a/other/data/security/youtube/security-youtube-allow-only-IpAndApplication-subscribe-data.yaml b/other/data/security/youtube/security-youtube-allow-only-IpAndApplication-subscribe-data.yaml
index 76550c6..e71f471 100644
--- a/other/data/security/youtube/security-youtube-allow-only-IpAndApplication-subscribe-data.yaml
+++ b/other/data/security/youtube/security-youtube-allow-only-IpAndApplication-subscribe-data.yaml
@@ -15,7 +15,7 @@
"appTask":
-
"scriptSystem": "ios"
- "scriptModule": "iPhone12"
+ "scriptModule": "iphone12"
"taskDescr": "allow-only-IpAndApplication-subscribe"
"appinfo":
"packageUrl": "http://fileupload.pro.testin.cn/group1/M00/00/62/Cipe2WEse9iASS0pAACUUGpu4ek233.ipa?filename=6bbde004-a5b5-4f6d-9ed8-9a60bd3fdcf7.ipa"
diff --git a/other/data/security/youtube/security-youtube-allow-only-IpAndApplication-videoOperation-data.yaml b/other/data/security/youtube/security-youtube-allow-only-IpAndApplication-videoOperation-data.yaml
index 6dff6ad..fe7e88e 100644
--- a/other/data/security/youtube/security-youtube-allow-only-IpAndApplication-videoOperation-data.yaml
+++ b/other/data/security/youtube/security-youtube-allow-only-IpAndApplication-videoOperation-data.yaml
@@ -15,7 +15,7 @@
"appTask":
-
"scriptSystem": "ios"
- "scriptModule": "iPhone12"
+ "scriptModule": "iphone12"
"taskDescr": "security-youtube-allow-only-IpAndApplication-videoOperation-data.yaml"
"appinfo":
"packageUrl": "http://fileupload.pro.testin.cn/group1/M00/00/62/Cipe2WEse9iASS0pAACUUGpu4ek233.ipa?filename=6bbde004-a5b5-4f6d-9ed8-9a60bd3fdcf7.ipa"
diff --git a/other/data/security/youtube/security-youtube-deny-only-IpAndApplication-login-data.yaml b/other/data/security/youtube/security-youtube-deny-only-IpAndApplication-login-data.yaml
index f520bdf..d5ae4ba 100644
--- a/other/data/security/youtube/security-youtube-deny-only-IpAndApplication-login-data.yaml
+++ b/other/data/security/youtube/security-youtube-deny-only-IpAndApplication-login-data.yaml
@@ -16,7 +16,7 @@
"appTask":
-
"scriptSystem": "ios"
- "scriptModule": "iPhone12"
+ "scriptModule": "iphone12"
"taskDescr": "deny-only-IpAndApplication-login"
"appinfo":
"packageUrl": "http://fileupload.pro.testin.cn/group1/M00/00/62/Cipe2WEse9iASS0pAACUUGpu4ek233.ipa?filename=6bbde004-a5b5-4f6d-9ed8-9a60bd3fdcf7.ipa"
@@ -92,7 +92,7 @@
"appTask":
-
"scriptSystem": "ios"
- "scriptModule": "iPhone12"
+ "scriptModule": "iphone12"
"taskDescr": "deny-only-IpAndApplication-login"
"appinfo":
"packageUrl": "http://fileupload.pro.testin.cn/group1/M00/00/62/Cipe2WEse9iASS0pAACUUGpu4ek233.ipa?filename=6bbde004-a5b5-4f6d-9ed8-9a60bd3fdcf7.ipa"
@@ -169,7 +169,7 @@
"appTask":
-
"scriptSystem": "ios"
- "scriptModule": "iPhone12"
+ "scriptModule": "iphone12"
"taskDescr": "deny-only-IpAndApplication-login"
"appinfo":
"packageUrl": "http://fileupload.pro.testin.cn/group1/M00/00/62/Cipe2WEse9iASS0pAACUUGpu4ek233.ipa?filename=6bbde004-a5b5-4f6d-9ed8-9a60bd3fdcf7.ipa"
@@ -245,7 +245,7 @@
"appTask":
-
"scriptSystem": "ios"
- "scriptModule": "iPhone12"
+ "scriptModule": "iphone12"
"taskDescr": "deny-only-IpAndApplication-login"
"appinfo":
"packageUrl": "http://fileupload.pro.testin.cn/group1/M00/00/62/Cipe2WEse9iASS0pAACUUGpu4ek233.ipa?filename=6bbde004-a5b5-4f6d-9ed8-9a60bd3fdcf7.ipa"
diff --git a/other/data/security/youtube/security-youtube-deny-only-IpAndApplication-playVideo-data.yaml b/other/data/security/youtube/security-youtube-deny-only-IpAndApplication-playVideo-data.yaml
index 735c568..73c90d8 100644
--- a/other/data/security/youtube/security-youtube-deny-only-IpAndApplication-playVideo-data.yaml
+++ b/other/data/security/youtube/security-youtube-deny-only-IpAndApplication-playVideo-data.yaml
@@ -16,7 +16,7 @@
"appTask":
-
"scriptSystem": "ios"
- "scriptModule": "iPhone12"
+ "scriptModule": "iphone12"
"taskDescr": "deny-only-IpAndApplication-playVideo"
"appinfo":
"packageUrl": "http://fileupload.pro.testin.cn/group1/M00/00/62/Cipe2WEse9iASS0pAACUUGpu4ek233.ipa?filename=6bbde004-a5b5-4f6d-9ed8-9a60bd3fdcf7.ipa"
@@ -87,7 +87,7 @@
"appTask":
-
"scriptSystem": "ios"
- "scriptModule": "iPhone12"
+ "scriptModule": "iphone12"
"taskDescr": "deny-only-IpAndApplication-playVideo"
"appinfo":
"packageUrl": "http://fileupload.pro.testin.cn/group1/M00/00/62/Cipe2WEse9iASS0pAACUUGpu4ek233.ipa?filename=6bbde004-a5b5-4f6d-9ed8-9a60bd3fdcf7.ipa"
@@ -159,7 +159,7 @@
"appTask":
-
"scriptSystem": "ios"
- "scriptModule": "iPhone12"
+ "scriptModule": "iphone12"
"taskDescr": "deny-only-IpAndApplication-playVideo"
"appinfo":
"packageUrl": "http://fileupload.pro.testin.cn/group1/M00/00/62/Cipe2WEse9iASS0pAACUUGpu4ek233.ipa?filename=6bbde004-a5b5-4f6d-9ed8-9a60bd3fdcf7.ipa"
@@ -230,7 +230,7 @@
"appTask":
-
"scriptSystem": "ios"
- "scriptModule": "iPhone12"
+ "scriptModule": "iphone12"
"taskDescr": "deny-only-IpAndApplication-playVideo"
"appinfo":
"packageUrl": "http://fileupload.pro.testin.cn/group1/M00/00/62/Cipe2WEse9iASS0pAACUUGpu4ek233.ipa?filename=6bbde004-a5b5-4f6d-9ed8-9a60bd3fdcf7.ipa"
diff --git a/other/data/security/youtube/security-youtube-deny-only-IpAndApplication-search-data.yaml b/other/data/security/youtube/security-youtube-deny-only-IpAndApplication-search-data.yaml
index 63a3f0a..89509ea 100644
--- a/other/data/security/youtube/security-youtube-deny-only-IpAndApplication-search-data.yaml
+++ b/other/data/security/youtube/security-youtube-deny-only-IpAndApplication-search-data.yaml
@@ -16,7 +16,7 @@
"appTask":
-
"scriptSystem": "ios"
- "scriptModule": "iPhone12"
+ "scriptModule": "iphone12"
"taskDescr": "deny-only-IpAndApplication-search"
"appinfo":
"packageUrl": "http://fileupload.pro.testin.cn/group1/M00/00/62/Cipe2WEse9iASS0pAACUUGpu4ek233.ipa?filename=6bbde004-a5b5-4f6d-9ed8-9a60bd3fdcf7.ipa"
@@ -87,7 +87,7 @@
"appTask":
-
"scriptSystem": "ios"
- "scriptModule": "iPhone12"
+ "scriptModule": "iphone12"
"taskDescr": "deny-only-IpAndApplication-search"
"appinfo":
"packageUrl": "http://fileupload.pro.testin.cn/group1/M00/00/62/Cipe2WEse9iASS0pAACUUGpu4ek233.ipa?filename=6bbde004-a5b5-4f6d-9ed8-9a60bd3fdcf7.ipa"
@@ -159,7 +159,7 @@
"appTask":
-
"scriptSystem": "ios"
- "scriptModule": "iPhone12"
+ "scriptModule": "iphone12"
"taskDescr": "deny-only-IpAndApplication-search"
"appinfo":
"packageUrl": "http://fileupload.pro.testin.cn/group1/M00/00/62/Cipe2WEse9iASS0pAACUUGpu4ek233.ipa?filename=6bbde004-a5b5-4f6d-9ed8-9a60bd3fdcf7.ipa"
@@ -230,7 +230,7 @@
"appTask":
-
"scriptSystem": "ios"
- "scriptModule": "iPhone12"
+ "scriptModule": "iphone12"
"taskDescr": "deny-only-IpAndApplication-search"
"appinfo":
"packageUrl": "http://fileupload.pro.testin.cn/group1/M00/00/62/Cipe2WEse9iASS0pAACUUGpu4ek233.ipa?filename=6bbde004-a5b5-4f6d-9ed8-9a60bd3fdcf7.ipa"
diff --git a/other/data/security/youtube/security-youtube-deny-only-IpAndApplication-subscribe-data.yaml b/other/data/security/youtube/security-youtube-deny-only-IpAndApplication-subscribe-data.yaml
index 315225d..9b35d48 100644
--- a/other/data/security/youtube/security-youtube-deny-only-IpAndApplication-subscribe-data.yaml
+++ b/other/data/security/youtube/security-youtube-deny-only-IpAndApplication-subscribe-data.yaml
@@ -16,7 +16,7 @@
"appTask":
-
"scriptSystem": "ios"
- "scriptModule": "iPhone12"
+ "scriptModule": "iphone12"
"taskDescr": "deny-only-IpAndApplication-subscribe"
"appinfo":
"packageUrl": "http://fileupload.pro.testin.cn/group1/M00/00/62/Cipe2WEse9iASS0pAACUUGpu4ek233.ipa?filename=6bbde004-a5b5-4f6d-9ed8-9a60bd3fdcf7.ipa"
@@ -87,7 +87,7 @@
"appTask":
-
"scriptSystem": "ios"
- "scriptModule": "iPhone12"
+ "scriptModule": "iphone12"
"taskDescr": "deny-only-IpAndApplication-subscribe"
"appinfo":
"packageUrl": "http://fileupload.pro.testin.cn/group1/M00/00/62/Cipe2WEse9iASS0pAACUUGpu4ek233.ipa?filename=6bbde004-a5b5-4f6d-9ed8-9a60bd3fdcf7.ipa"
@@ -159,7 +159,7 @@
"appTask":
-
"scriptSystem": "ios"
- "scriptModule": "iPhone12"
+ "scriptModule": "iphone12"
"taskDescr": "deny-only-IpAndApplication-subscribe"
"appinfo":
"packageUrl": "http://fileupload.pro.testin.cn/group1/M00/00/62/Cipe2WEse9iASS0pAACUUGpu4ek233.ipa?filename=6bbde004-a5b5-4f6d-9ed8-9a60bd3fdcf7.ipa"
@@ -230,7 +230,7 @@
"appTask":
-
"scriptSystem": "ios"
- "scriptModule": "iPhone12"
+ "scriptModule": "iphone12"
"taskDescr": "deny-only-IpAndApplication-subscribe"
"appinfo":
"packageUrl": "http://fileupload.pro.testin.cn/group1/M00/00/62/Cipe2WEse9iASS0pAACUUGpu4ek233.ipa?filename=6bbde004-a5b5-4f6d-9ed8-9a60bd3fdcf7.ipa"
diff --git a/other/data/security/youtube/security-youtube-deny-only-IpAndApplication-videoOperation-data.yaml b/other/data/security/youtube/security-youtube-deny-only-IpAndApplication-videoOperation-data.yaml
index 3dc134a..cefb8f9 100644
--- a/other/data/security/youtube/security-youtube-deny-only-IpAndApplication-videoOperation-data.yaml
+++ b/other/data/security/youtube/security-youtube-deny-only-IpAndApplication-videoOperation-data.yaml
@@ -16,7 +16,7 @@
"appTask":
-
"scriptSystem": "ios"
- "scriptModule": "iPhone12"
+ "scriptModule": "iphone12"
"taskDescr": "deny-only-IpAndApplication-videoOperation"
"appinfo":
"packageUrl": "http://fileupload.pro.testin.cn/group1/M00/00/62/Cipe2WEse9iASS0pAACUUGpu4ek233.ipa?filename=6bbde004-a5b5-4f6d-9ed8-9a60bd3fdcf7.ipa"
@@ -87,7 +87,7 @@
"appTask":
-
"scriptSystem": "ios"
- "scriptModule": "iPhone12"
+ "scriptModule": "iphone12"
"taskDescr": "deny-only-IpAndApplication-videoOperation"
"appinfo":
"packageUrl": "http://fileupload.pro.testin.cn/group1/M00/00/62/Cipe2WEse9iASS0pAACUUGpu4ek233.ipa?filename=6bbde004-a5b5-4f6d-9ed8-9a60bd3fdcf7.ipa"
@@ -159,7 +159,7 @@
"appTask":
-
"scriptSystem": "ios"
- "scriptModule": "iPhone12"
+ "scriptModule": "iphone12"
"taskDescr": "deny-only-IpAndApplication-videoOperation"
"appinfo":
"packageUrl": "http://fileupload.pro.testin.cn/group1/M00/00/62/Cipe2WEse9iASS0pAACUUGpu4ek233.ipa?filename=6bbde004-a5b5-4f6d-9ed8-9a60bd3fdcf7.ipa"
@@ -230,7 +230,7 @@
"appTask":
-
"scriptSystem": "ios"
- "scriptModule": "iPhone12"
+ "scriptModule": "iphone12"
"taskDescr": "deny-only-IpAndApplication-videoOperation"
"appinfo":
"packageUrl": "http://fileupload.pro.testin.cn/group1/M00/00/62/Cipe2WEse9iASS0pAACUUGpu4ek233.ipa?filename=6bbde004-a5b5-4f6d-9ed8-9a60bd3fdcf7.ipa"
diff --git a/other/data/security/youtube/security-youtube-monitor-only-IpAndApplication-login-data.yaml b/other/data/security/youtube/security-youtube-monitor-only-IpAndApplication-login-data.yaml
index 21e612a..8855c05 100644
--- a/other/data/security/youtube/security-youtube-monitor-only-IpAndApplication-login-data.yaml
+++ b/other/data/security/youtube/security-youtube-monitor-only-IpAndApplication-login-data.yaml
@@ -17,7 +17,7 @@
"appTask":
-
"scriptSystem": "ios"
- "scriptModule": "iPhone12"
+ "scriptModule": "iphone12"
"taskDescr": "monitor-only-IpAndApplication-login"
"appinfo":
"packageUrl": "http://fileupload.pro.testin.cn/group1/M00/00/62/Cipe2WEse9iASS0pAACUUGpu4ek233.ipa?filename=6bbde004-a5b5-4f6d-9ed8-9a60bd3fdcf7.ipa"
diff --git a/other/data/security/youtube/security-youtube-monitor-only-IpAndApplication-playVideo-data.yaml b/other/data/security/youtube/security-youtube-monitor-only-IpAndApplication-playVideo-data.yaml
index ce96131..7da9ad5 100644
--- a/other/data/security/youtube/security-youtube-monitor-only-IpAndApplication-playVideo-data.yaml
+++ b/other/data/security/youtube/security-youtube-monitor-only-IpAndApplication-playVideo-data.yaml
@@ -17,7 +17,7 @@
"appTask":
-
"scriptSystem": "ios"
- "scriptModule": "iPhone12"
+ "scriptModule": "iphone12"
"taskDescr": "monitor-only-IpAndApplication-playVideo"
"appinfo":
"packageUrl": "http://fileupload.pro.testin.cn/group1/M00/00/62/Cipe2WEse9iASS0pAACUUGpu4ek233.ipa?filename=6bbde004-a5b5-4f6d-9ed8-9a60bd3fdcf7.ipa"
diff --git a/other/data/security/youtube/security-youtube-monitor-only-IpAndApplication-search-data.yaml b/other/data/security/youtube/security-youtube-monitor-only-IpAndApplication-search-data.yaml
index 6549dd8..7026fa9 100644
--- a/other/data/security/youtube/security-youtube-monitor-only-IpAndApplication-search-data.yaml
+++ b/other/data/security/youtube/security-youtube-monitor-only-IpAndApplication-search-data.yaml
@@ -17,7 +17,7 @@
"appTask":
-
"scriptSystem": "ios"
- "scriptModule": "iPhone12"
+ "scriptModule": "iphone12"
"taskDescr": "monitor-only-IpAndApplication-search"
"appinfo":
"packageUrl": "http://fileupload.pro.testin.cn/group1/M00/00/62/Cipe2WEse9iASS0pAACUUGpu4ek233.ipa?filename=6bbde004-a5b5-4f6d-9ed8-9a60bd3fdcf7.ipa"
diff --git a/other/data/security/youtube/security-youtube-monitor-only-IpAndApplication-subscribe-data.yaml b/other/data/security/youtube/security-youtube-monitor-only-IpAndApplication-subscribe-data.yaml
index 6e1b983..39d338b 100644
--- a/other/data/security/youtube/security-youtube-monitor-only-IpAndApplication-subscribe-data.yaml
+++ b/other/data/security/youtube/security-youtube-monitor-only-IpAndApplication-subscribe-data.yaml
@@ -17,7 +17,7 @@
"appTask":
-
"scriptSystem": "ios"
- "scriptModule": "iPhone12"
+ "scriptModule": "iphone12"
"taskDescr": "monitor-only-IpAndApplication-subscribe"
"appinfo":
"packageUrl": "http://fileupload.pro.testin.cn/group1/M00/00/62/Cipe2WEse9iASS0pAACUUGpu4ek233.ipa?filename=6bbde004-a5b5-4f6d-9ed8-9a60bd3fdcf7.ipa"
diff --git a/other/data/security/youtube/security-youtube-monitor-only-IpAndApplication-videoOperation-data.yaml b/other/data/security/youtube/security-youtube-monitor-only-IpAndApplication-videoOperation-data.yaml
index 195fc6e..28def69 100644
--- a/other/data/security/youtube/security-youtube-monitor-only-IpAndApplication-videoOperation-data.yaml
+++ b/other/data/security/youtube/security-youtube-monitor-only-IpAndApplication-videoOperation-data.yaml
@@ -17,7 +17,7 @@
"appTask":
-
"scriptSystem": "ios"
- "scriptModule": "iPhone12"
+ "scriptModule": "iphone12"
"taskDescr": "monitor-only-IpAndApplication-videoOperation"
"appinfo":
"packageUrl": "http://fileupload.pro.testin.cn/group1/M00/00/62/Cipe2WEse9iASS0pAACUUGpu4ek233.ipa?filename=6bbde004-a5b5-4f6d-9ed8-9a60bd3fdcf7.ipa"
generated by cgit v1.2.3 (git 2.39.1) at 2025-12-30 14:09:12 +0000