How do I write a WAF rule that matches if there's any query paramters?
How do I write a WAF rule that matches if there's any query paramters?
Hhttp.request.uri.query != ""Don't quite remember if that is how you check a string is empty...
Dlen(http.request.uri.query)Probably
HThen just check if is 0
Dah
len(http.request.uri.query) > 0huh, that's odd
Dwhy is there a 302 redirect to
/docsoh.
Dnever mind, I'm an idiot, it's my Worker that's doing that.
Klool
HIt's been passed on now, so 
it gets resolved quickly
it gets resolved quicklyKIs there a Community section for Account related things? Except Dashboard
DWhere I can report a false flag in Bots Fight mode in CF?
SThank you so much 
DSpecifically the Apple bot:
is being blocked by it and is not a bad bot
is being blocked by it and is not a bad bot
HBot fight mode fights all bots, not just bad ones
HIt might allow verified bots, but idk
HFor reporting issues? Or...
DIt allows verified bot like Google's one. Not sure why that bot from Apple isn't verified
DAs it should by default
DIs there any way to report/suggest it to be verified?
HLooks like Applebot is verified, but whatever that other one is, isn't. As for getting it verified, iirc you need to own the bot
HBut also, BFM should only be used when you are currently under heavy attack, at least imho
DOh, sad
DI don't think so
HBFM is basically a either its on, or it is off situation
HIf it blocks all of the bots, thats good
HIf it blocks real users, there isn't much you can do
KUhh remove Account from my Account
HOther than upgrade to Super Bot Fight Mode
KCloudFlare Support said I should ask the Community. idk how the community can help me but yea
HOh, like you are a member of an account, and you want to be removed?
KThe Account Owner isnt replying to me and I also cant remove myself from the Account
DIt's not a user. I'm using it since so many time ago and working fine. I added for now a rule in the WAF to bypass it. Not sure if that will be effective
DObviously apple is not going to request Cloudflare anything
CBFM and SBFM are high security features intended to quickly help customers under active attack stop as many bots as possible. Due to the high security threshold, false positives do sometimes happen.https://developers.cloudflare.com/bots/troubleshooting/#super-bot-fight-mode-feature-sbfm-is-still-blocking-requests-even-though-the-feature-is-turned-off-why
HThat's definitely not something community members can do for you. I would recommend reopening the ticket
HI mean, they do have Applebot verified, so I assume they did something
KThats the thing, the dude did a Discord like move. Ignored my message and left it open
K:0058pikachu_derp:
HHow long has it been?
CIf you have Free Bot Fight Mode, the only thing you can do is turn it off. You can't skip it or anything, you can only skip Super Bot Fight Mode. They did mention in the blog post eventually bringing that option down to free Bot Fight mode though
BFM has limited control. You cannot bypass or skip BFM using the Skip action in WAF custom rules or using Page Rules. BFM will be disabled if there are any IP Access rules present.
K4 Days
HGive it a few more days, then reping if no one answers
KThank you for contacting Cloudflare Support, I’ve brought your inquiry to the attention of the Community team. Customer Support is currently experiencing an extremely high demand for free services and email support is prioritized for paying customers.
As a Free customer, you can still get great support for general questions and basic troubleshooting in our Community. And, you have full access to our detailed troubleshooting guides in the Help Center and our Developer Center documentation.
Follow these steps to ask this question to the Community:
First, login to the Community.
Next, to post your inquiry, click here (don't forget to include "Remove "email removed due to privacy Account" from my Account" to the details).
Finally, to search the Community before you post, click here.
If your question is related to billing or two-factor authentication, please reply to this email and let me know. If not, your question should be asked in the Community so that other Customers will also benefit from the answer.
HSo wait, you replied after they sent you this?
KI directly reacted to it and nothing after it
KDirectly as I got the mail
