HAProxy Technologies HAProxy Technologies | Dec 13, 2021 | NEWS, SECURITY, TECH
This post will be updated over the next several days. Recently, a Remote Code Execution vulnerability was discovered in the Apache Log4J library. This vulnerability, which is tracked in CVE-2021-44228, dubbed Log4Shell, allows attackers to execute arbitrary code on...
Nick Ramirez Nick Ramirez | Mar 5, 2021 | SECURITY, TECH
The HAProxy Enterprise WAF with support for ModSecurity rulesets protects your web applications from sophisticated, Layer 7 threats left unhandled by network firewalls. Data breaches. Loss of consumer confidence. An endless cycle of companies being compromised....
Nick Ramirez Nick Ramirez | Oct 19, 2020 | SECURITY, TECH
HAProxy provides an easy and straightforward way to add HTTPS to your website. As a load balancer positioned in front of your web servers, it can handle all of the encryption and decryption duties, offloading those tasks from your upstream servers. That’s good...
Daniel Corbett Daniel Corbett | Sep 21, 2020 | NEWS, SECURITY
The OWASP ModSecurity Core Rule Set team has reported a Denial of Service vulnerability in ModSecurity version 3.x that allows an attacker to send a crafted payload that exploits a flaw in how regular expressions are matched within the software. A CVE (CVE-2020-15598)...
Baptiste Assmann Baptiste Assmann | Apr 26, 2013 | SECURITY, TECH
Brute force attacks Brute force is a pretty simple type of attacks: it consists of massively send requests to a URL with different parameter each time. The main purpose is to try to find the right parameter combination. Usually, brute force is used to discover...
