Scenario: A Citrix Engineer needs to configure Application Firewall to handle SQL injection issues.
However, after enabling SQL injection check, the backend server started dropping user requests.
The Application Firewall configuration is as follows:
add appfw profile Test123 CstartURLAction none- denyURLAction none-crossSiteScriptingAction none CSQLInjectionAction log stats- SQLInjection TransformSpecialChars ON CSQLInjectionCheckSQLWildChars ON- fieldFormatAction none- bufferOverflowAction none- responseContentType “application/octet-stream” CXMLSQLInjectionAction none- XMLXSSAction none-XMLWSIAction none- XMLValidationAction none
What does the engineer need to change in the Application Firewall configuration?
A . Enable-XMLSQLInjectionAction none
B . Enable-XMLValidationAction none
C . Disable- SQLInjectionCheckSQLWildChars ON
D . Disable- SQLInjectionTransformSpecialChars ON
Answer: C