Cannot use the semicolon character in regular expressions with RSA Web Threat Detection
Originally Published: 2017-07-07
Article Number
Applies To
RSA Product/Service Type: Mitigator
RSA Version/Condition: 5.x, 6.x
Issue
Register Type: IP Register Name: idevice Register Value: Txn('HEADERS')=~/((?:iphone|ipad)\;.{2,30})/ic
When entering a rule it will not accept the rule with the semicolon. RSA Web Threat Detection will accept the rule entry if the semicolon character is removed.
Resolution
If you look in the help sections you will see a reference to the boost.org syntax that is used with RSA Web Threat Detection, which is Perl-based regex. See the references below. You can search online for a website or tool that can evaluate Perl-based regex syntax.
Look over the documents to see how you could express in the Perl syntax as defined by boost.org. If you are having problems then contact RSA Customer Support and quote this article number for further assistance.
Related Articles
How to exclude a range of IPs from analysis with whitelists in RSA Web Threat Detection Number of Views How to enable debug logs in RSA Web Threat Detection Number of Views How to download RSA Web Threat Detection patches and version upgrades on RSA Link Number of Views How to capture packets (pcap) using SilverTap for RSA Web Threat Detection Number of Views Which HTTP header methods are supported with RSA Web Threat Detection? Number of Views
Trending Articles
Passwordless Authentication in Windows MFA Agent for Active Directory – Quick Setup Guide RSA Authentication Manager 8.9 Release Notes (January 2026) RSA Authentication Manager Upgrade Process RSA Authentication Manager 8.7 SP2 Setup and Configuration Guide An example of SSO using SAML and ADFS with RSA Identity Management and Governance 6.9.x
Don't see what you're looking for?
