Warning: The attributes below were stripped from the script arg list as they contain characters that are not permitted

book

Article ID: 159603

calendar_today

Updated On:

Products

Data Loss Prevention Enforce

Issue/Introduction

After installing a script lookup chain, the localhost log may get the following error:

 

Warning: The attributes below were stripped from the script arg list as they contain characters that are not permitted

 

The error can occur frequently causing the IncidentPersister log to become large.

This problem may also cause warning in Enforce console: Event code 3100 Summary "Invalid Attributes detected with Script Lookup Plugin "

Resolution

Relevant to 8.0 and above

The attributes are run through a security filter that defends against unsafe Unix and Windows shell strings. 

The attribute is required to be at least one character long and composed from the following character sets:

  • [a-zA-Z_0-9]
  • -+.=:@()$
  • spaces
  • ? and % if escaped by a backslash(\), \? and \%

Anything else is illegal and will cause a warning.

The security filter check can be disabled. 
In the file \Protect\config\ScriptLookup.properties, change the true value of settings below to false.
 

NOTE: Disable this security check at your own risk. Consult a security expert if you do not understand the consequences of disabling this feature.

#-------------------------------------

# Standard In & Standard Out Filtering

#-------------------------------------

stdin.filtering.enabled=true

stdout.filtering.enabled=true