WAF on nginx

I use both 6G and ModSec (not simultaneously lol). Which WAF are you using? What environment are you running?
 
Bryn said:
I use both 6G and ModSec (not simultaneously lol). Which WAF are you using? What environment are you running?
Click to expand...
Only saw this thread again today.:eek:
Modsec on nginx using debian buster with latest kernel. Have figured some stuff out in the mean time as the docs are not easy. (Is there a good reference somewhere?)
I have adopted CRS which seems to be reasonable and its hovering up large amounts of rubbish.
 
r00igev@@r said:
Only saw this thread again today.:eek:
Modsec on nginx using debian buster with latest kernel. Have figured some stuff out in the mean time as the docs are not easy. (Is there a good reference somewhere?)
I have adopted CRS which seems to be reasonable and its hovering up large amounts of rubbish.
Click to expand...
Without a doubt, Ivan Ristic's Modsecurity Handbook is the reference. Rather than Amazon, buy it straight from Feisty Duck (Ivan and his wife Jelene's company) and you will probably get the 3rd edition free.
I hope that your regular expression skills are up to scratch, I personally find them to be a humbling experience :rolleyes:
 
RonSwanson said:
Without a doubt, Ivan Ristic's Modsecurity Handbook is the reference. Rather than Amazon, buy it straight from Feisty Duck (Ivan and his wife Jelene's company) and you will probably get the 3rd edition free.
I hope that your regular expression skills are up to scratch, I personally find them to be a humbling experience :rolleyes:
Click to expand...
It takes me multiple attempts and then phoning a friend...
 
You must log in or register to reply here.
Back
Top
Sign up to the MyBroadband newsletter
X