by Chad Lavoie | Mar 24, 2017 | security
The Proxy protocol is a widely used invention of our CTO at HAProxy Technologies, Willy Tarreau, to solve the problem of TCP connection parameters being lost when relaying TCP connections through proxies. Its primary purpose is to chain proxies and reverse-proxies...
by Baptiste Assmann | Feb 10, 2016 | HAPEE, HAProxy, layer7, security
One of the biggest security challenges that companies face in today’s modern climate is the POST attack. Unlike a more traditional “Denial-of-Service” attack, POST attacks target a servers logical resources – making them particularly powerful...
by Nenad Merdanovic | Jul 15, 2015 | benchmark, HAPEE, HAProxy, performance, security, ssl
ECC and RSA certificates and HTTPS To keep this practical, we will not go into theory of ECC or RSA certificates. Let’s just mention that ECC certificates can provide as much security as RSA with much lower key size, meaning much lower computation requirements...
by Baptiste Assmann | May 15, 2015 | Aloha, layer4, layer7, security
Les attaques par DDOS Il y a quelques temps, nous avions publié sur ce blog, un article expliquant comment utiliser un load-balancer pour se protéger contre les attaques de type DDOS applicatif:...
by Baptiste Assmann | Oct 15, 2014 | HAProxy, security, ssl
SSLv3 poodle vulnerability Yesterday, Google security researchers have disclosed a new vulnerability on SSL protocol. Fortunately, this vulnerability is only on an old version of the SSL protocol: SSLv3 (15 years old protocol). An attacker can force a browser to...
by Baptiste Assmann | Sep 30, 2014 | HAProxy, security
Bash Shellshock vulnerability (CVE-2014-6271 and CVE-2014-7169) Last week, a vulnerability in bash has been discovered. It is possible, under some circumstances, to inject code into a bash shell script. It could be very dangerous if bash is used to process request...
