AWS waf documentation change
Summary
Updated terminology from 'protection pack or web ACL' to 'protection pack (web ACL)' for consistency. Clarified that ACFP response inspection requires CloudFront protection.
Security assessment
Changes are purely terminological updates without addressing vulnerabilities. No security fixes, feature additions, or incident references are present. The CloudFront clarification is an operational detail, not a security enhancement.
Diff
diff --git a/waf/latest/developerguide/waf-acfp-rg-using.md b/waf/latest/developerguide/waf-acfp-rg-using.md index b274df913..fe4f2a541 100644 --- a//waf/latest/developerguide/waf-acfp-rg-using.md +++ b//waf/latest/developerguide/waf-acfp-rg-using.md @@ -21 +21 @@ The ACFP stolen credentials database only contains usernames in email format. -This guidance is intended for users who know generally how to create and manage AWS WAF protection pack or web ACLs, rules, and rule groups. Those topics are covered in prior sections of this guide. For basic information about how to add a managed rule group to your protection pack or web ACL, see [Adding a managed rule group to a protection pack or web ACL through the console](./waf-using-managed-rule-group.html). +This guidance is intended for users who know generally how to create and manage AWS WAF protection packs (web ACLs), rules, and rule groups. Those topics are covered in prior sections of this guide. For basic information about how to add a managed rule group to your protection pack (web ACL), see [Adding a managed rule group to a protection pack (web ACL) through the console](./waf-using-managed-rule-group.html). @@ -27 +27 @@ Use the ACFP rule group in accordance with the best practices at [Best practices -###### To use the `AWSManagedRulesACFPRuleSet` rule group in your protection pack or web ACL +###### To use the `AWSManagedRulesACFPRuleSet` rule group in your protection pack (web ACL) @@ -29 +29 @@ Use the ACFP rule group in accordance with the best practices at [Best practices - 1. Add the AWS managed rule group, `AWSManagedRulesACFPRuleSet` to your protection pack or web ACL, and **Edit** the rule group settings before saving. + 1. Add the AWS managed rule group, `AWSManagedRulesACFPRuleSet` to your protection pack (web ACL), and **Edit** the rule group settings before saving. @@ -93 +93 @@ For example, for an HTML form with user and password input elements named `usern -ACFP response inspection is available only in protection pack or web ACLs that protect CloudFront distributions. +ACFP response inspection is available only in protection packs (web ACLs) that protect CloudFront distributions. @@ -109 +109 @@ You can further limit the scope of requests that the rule group inspects by addi - 4. Save your changes to the protection pack or web ACL. + 4. Save your changes to the protection pack (web ACL).