About This Document
These response actions are part of the OWASP AppSensor project which advocates bringing intelligent intrusion detection inside the application. These responses can be used to counter a malicious user that has been detected probing for vulnerabilities or weaknesses within your application.
The following table lists possible AppSensor Responses (ASRs). This table, examples and alternative classifications are described in [AppSensor - Response Actions] (64 KB PDF).
ASR-A: Logging Change
Logging | One, some or all users | Instantaneous (request) or for a period
The granularity of logging is changed (typically more logging)
Example 1: Capture sanitised request headers and response bodies
Example 2: Full stack trace of error messages logged
Example 3: Record DNS data on user's IP address
Example 4: Security logging level changed to include 'informational' messages