par Baptiste Assmann | Fév 10, 2016 | Non classifié(e)
One of the biggest security challenges that companies face in today’s modern climate is the POST attack. Unlike a more traditional « Denial-of-Service » attack, POST attacks target a servers logical resources – making them particularly powerful when...
par Baptiste Assmann | Juin 9, 2015 | Non classifié(e)
SSL/TLS and HSTS SSL everywhere is on its way. Unfortunately, many applications were written for HTTP only and switching to HTTPs is not an easy and straight forward path. Read more here about impact of TLS offloading (when a third party tool perform TLS in front of...
par Baptiste Assmann | Mai 6, 2015 | Non classifié(e)
HAProxy’s load-balancing algorithms HAProxy supports many load-balancing algorithms which may be used in many different type of cases. That said, cache servers, which deliver most of the time the static content from your web applications, may require some...
par Baptiste Assmann | Oct 16, 2012 | Non classifié(e)
Synopsis I’ve already described WAF in a previous article, where I spoke about WAF scalability with apache and modsecurity. One of the main issue with Apache and modsecurity is the performance. To address this issue, an alternative exists: naxsi, a Web...
par Baptiste Assmann | Sep 19, 2012 | Non classifié(e)
Synopsis Today, almost any ecommerce website uses a load-balancer or an application delivery controller in front of it, in order to improve its availability and reliability. In today’s article, I’ll explain how we can take advantage of ADCs’ layer 7...
