Wrong Identification Of Response Types Leads To Unnecessary Blocking Of Content [ Client Scenario ]

Tell everybody, what you think about SafeSquid!
Speak your mind!
India aashish97
Posts: 117
Joined: Sat Jul 06, 2019 10:45 am

Wrong Identification Of Response Types Leads To Unnecessary Blocking Of Content [ Client Scenario ]

Post by aashish97 » Sat Apr 18, 2020 11:20 am

Hello All,

I received an unexpected error from one of our client.
They faced an problem in IBM site.
The client reported a problem faced while trying to access an “IBM LINK”
LINK: https://myibm.ibm.com/ela?t=eyJhbGciOiJ ... 6dZAEzAhOc   
SnapShot:
blockOnIBMsiteDueToWrongContentLengthIdentification.png
blockOnIBMsiteDueToWrongContentLengthIdentification.png (113.94 KiB) Viewed 1831 times

As per the SafeSquid Block Template, it reports that the website respective link was blocked because it will download a content more than 500MB.
Troubleshooting Analysis (RCA):


SafeSquid Version Used: safesquid-2020.0131.1457.3-swg-standard
I did some dig around the problem and found that the IBM Server reponded with “500 Internat Server Error” for this link and the Response Headers with No Content-Length or Transfer-Encoding Provided.
SafeSquid Wrongly Matched for Response Types having Content-Length Minimum Set to 100MB & 500MB


[NOTE: Please Update if any Wrong Response Type Creation is done by Me.]



The Response Type Snapshot are added below:

ibmsiteLinkwrongIdresponseconfig.png
ibmsiteLinkwrongIdresponseconfig.png (93.16 KiB) Viewed 1830 times
Since this Website is going to be Used by Many Students.
Below Policy Changes were Made:

I.e An Exception was added to the SafeSquid-SWG Configuration to overcome these Wrong Content Length Identification
This website was a very important requirement of the client as they have students who access study materials in this website.


Added a Request-Type to Identify ibm & subdomains of ibm
exceptionmadeforibmforcontentlengthproblem.png
exceptionmadeforibmforcontentlengthproblem.png (42.71 KiB) Viewed 1830 times

India aashish97
Posts: 117
Joined: Sat Jul 06, 2019 10:45 am

Re: Wrong Identification Of Response Types Leads To Unnecessary Blocking Of Content [ Client Scenario ]

Post by aashish97 » Sat Apr 18, 2020 11:28 am

Continuation of the Problem Solution we added.

A Policy was added After CONTECT GREATER THAN 200MB-BLOCK
To allow Such Wrongly Blocked Links
policyforwromgcontentlengthid.png
policyforwromgcontentlengthid.png (66.8 KiB) Viewed 1828 times
Detailed Logs are Attached which explains this problem Thanks

A quick Screenshot is added below:
ibmwrongidinlogs.png
ibmwrongidinlogs.png (86.88 KiB) Viewed 1828 times

Post Reply