Create policy.yaml
Browse files- policy.yaml +22 -0
policy.yaml
ADDED
|
@@ -0,0 +1,22 @@
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| 1 |
+
version: 1.0.0
|
| 2 |
+
immutable: true
|
| 3 |
+
|
| 4 |
+
rules:
|
| 5 |
+
passive_default: true
|
| 6 |
+
require_authorization_for:
|
| 7 |
+
- http_headers
|
| 8 |
+
- robots_fetch
|
| 9 |
+
|
| 10 |
+
forbidden_modules:
|
| 11 |
+
- port_scanning
|
| 12 |
+
- brute_force
|
| 13 |
+
- credential_testing
|
| 14 |
+
- exploitation
|
| 15 |
+
|
| 16 |
+
logging:
|
| 17 |
+
store_raw_indicators: false
|
| 18 |
+
require_hashing: true
|
| 19 |
+
|
| 20 |
+
correction:
|
| 21 |
+
allowed_verbs: [ADAPT, CONSTRAIN, REVERT, OBSERVE]
|
| 22 |
+
policy_mutation_requires_human: true
|