Am trying to configure mutescreamer to block intrusion attacks without blocking perfectly normal queries.
So far the following are part of the exception:
The bottom ones hae been added, as MuteScreamer picked these up, even though they were just 'intrusions' coming from harmless activities carried out by our IP addresses on our website
The question I have is by adding these to the exceptions, are we reducing the impact of Mute Screamer in picking up genuine attacks?
I can see a lot of intrusions that are logged in the system, and it is not easy to know if they are genuine attacks or harmless browsing.