Nick Ramirez Nick Ramirez | Mar 5, 2021 | SECURITY, TECH
The HAProxy Enterprise WAF with support for ModSecurity rulesets protects your web applications from sophisticated, Layer 7 threats left unhandled by network firewalls. Data breaches. Loss of consumer confidence. An endless cycle of companies being compromised....
Nick Ramirez Nick Ramirez | Oct 19, 2020 | SECURITY, TECH
HAProxy provides an easy and straightforward way to add HTTPS to your website. As a load balancer positioned in front of your web servers, it can handle all of the encryption and decryption duties, offloading those tasks from your upstream servers. That’s good...
Daniel Corbett Daniel Corbett | Sep 21, 2020 | NEWS, SECURITY
The OWASP ModSecurity Core Rule Set team has reported a Denial of Service vulnerability in ModSecurity version 3.x that allows an attacker to send a crafted payload that exploits a flaw in how regular expressions are matched within the software. A CVE (CVE-2020-15598)...
Baptiste Assmann Baptiste Assmann | Apr 26, 2013 | SECURITY, TECH
Brute force attacks Brute force is a pretty simple type of attacks: it consists of massively send requests to a URL with different parameter each time. The main purpose is to try to find the right parameter combination. Usually, brute force is used to discover...
Baptiste Assmann Baptiste Assmann | Oct 12, 2012 | TECH
Note: The below information is deprecated as HAProxy Enterprise now offers a fully functional native WAF module which supports whitelist-based rulesets, blacklist-based rulesets, and ModSecurity rulesets! Greeting to Thomas Heil, from our German partner Olanis,...