Links
Categories
Tags
apache appsrv backend for dynamic content benchmark cache caching competition compression content switching ddos dos ecommerce exchange 2010 exchange 2013 geoip haproxy high-availability http keepalive imap infrastructure ipv6 layer4 layer7 marketing mod_security naxsi nginx performance persistence postfix reverse-proxy rtmp scalability slowloris smtp sni ssl sslid stud stunnel tls transparent proxy url hash varnish virtualization webperfTwitter Updates
- #apache cdorked Backdoor detection and prevention with #haproxy : blog.exceliance.fr/2013/05/08/apa… 2 weeks ago
-
Recent Posts
Tag Archives: ddos
Apache cdorked backdoor detection
Apache Cdorked.A backdoor This is a pretty recent attack, using Cpanel to change the Apache httpd binary by a compromised one which embeds a backdoor. A few articles with more details are available here: * http://www.welivesecurity.com/2013/04/26/linuxcdorked-new-apache-backdoor-in-the-wild-serves-blackhole/ * http://blog.sucuri.net/2013/04/apache-binary-backdoors-on-cpanel-based-servers.html It seems … Continue reading
wordpress CMS brute force protection with HAProxy
Brute force attacks Brute force is a pretty simple type of attacks: it consists of massively send requests to a URL with different parameter each time. The main purpose is to try to find the right parameter combination. Usually, brute … Continue reading
high performance WAF platform with Naxsi and HAProxy
Synopsis I’ve already described WAF in a previous article, where I spoke about WAF scalability with apache and modsecurity. One of the main issue with Apache and modsecurity is the performance. To address this issue, an alternative exists: naxsi, a … Continue reading
Posted in Aloha, architecture, HAProxy, security
Tagged content switching, ddos, dos, ecommerce, haproxy, high-availability, infrastructure, layer7, naxsi, nginx, performance, reverse-proxy, scalability
3 Comments
Scalable WAF protection with HAProxy and Apache with modsecurity
Greeting to Thomas Heil, from our German partner Olanis, for his help in Apache and modsecurity configuration assistance. What is a Web Application Firewall (WAF)? Years ago, it was common to protect networks using a firewall… Well known devices which … Continue reading
Posted in Aloha, architecture, HAProxy, security
Tagged apache, content switching, ddos, high-availability, infrastructure, mod_security, performance, reverse-proxy, scalability, transparent proxy
6 Comments
HTTP request flood mitigation
In a recent article, we saw how we can use a load-balancer as a first row of defense against DDOS. The purpose of the present article to provide a configuration to protect your applications against HTTP request flood. The configuration … Continue reading
