Daniel Corbett Daniel Corbett | Sep 21, 2020 | NEWS, SECURITY
The OWASP ModSecurity Core Rule Set team has reported a Denial of Service vulnerability in ModSecurity version 3.x that allows an attacker to send a crafted payload that exploits a flaw in how regular expressions are matched within the software. A CVE (CVE-2020-15598)...
Nick Ramirez Nick Ramirez | Sep 15, 2020 | SECURITY, TECH
Detect and stop fake web crawlers using HAProxy Enterprise’s Verify Crawler add-on. How your website ranks on Google can have a substantial impact on the number of visitors you receive, which can ultimately make or break the success of your online...
Nick Ramirez Nick Ramirez | Sep 8, 2020 | SECURITY, SSL
Guarantee strong encryption by enabling ‘FIPS mode’ with RHEL and HAProxy Enterprise. SSL and its successor TLS are protocols that safeguard web traffic as it crosses the Internet, encrypting communication and protecting it from tampering. However,...
HAProxy Technologies HAProxy Technologies | Aug 31, 2020 | CLOUD, LOAD BALANCING / ROUTING, SECURITY
HAProxy Enterprise handles SAML single sign-on for your applications and integrates with identity providers like Azure Active Directory. Single sign-on (SSO) is such a familiar convenience for companies that it’s easy to forget how powerful it is. When employees...
Nick Ramirez Nick Ramirez | Aug 21, 2020 | SECURITY, SSL
Use the HAProxy Runtime API to update SSL certificates in HAProxy without a reload. When you route traffic through an HAProxy load balancer, you gain the ability to terminate SSL at the load balancer. HAProxy encrypts communication between the client and itself and...
Nick Ramirez Nick Ramirez | Aug 14, 2020 | LOAD BALANCING / ROUTING, SECURITY
HAProxy gives you an arsenal of sophisticated countermeasures including deny, tarpit, silent drop, reject, and shadowban to stop malicious users. There are two phases to stopping malicious users from abusing your website and online applications. Step one is detection,...
