Trapsd.log contains allowed files in restriction profile

cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Trapsd.log contains allowed files in restriction profile

L3 Networker

Is it normal behavior that the trapsd.log file contains the list of allowed files in my restriction profile.

Since this is only names of files and not hashes, an attacker could take advantage of this list

 

NathanBradley_0-1654614988465.png

 

1 REPLY 1

L2 Linker

It is normal in the fact that this how it's done currently, but now is it secure to do this, no it isn't. Try to raise it through a support ticket, I guess the more that raise those kind of issues the more chance there is for Palo Alto to fix it.

Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!

The LIVEcommunity thanks you for your participation!