Web traffic limitation
Synopsis For different reason, we may want to limit the number of connections or the number of requests we allow to a web farm. In example: give more capacity to authenticated users compared to...
View ArticleUse a load-balancer as a first row of defense against DDOS
We’ve seen recently more and more DOS and DDOS attacks. Some of them were very big, requiring thousands of computers… But in most cases, this kind of attacks are made by a few computers aiming to make...
View ArticleHTTP request flood mitigation
In a recent article, we saw how we can use a load-balancer as a first row of defense against DDOS. The purpose of the present article to provide a configuration to protect your applications against...
View ArticleClik here to view.
Scalable WAF protection with HAProxy and Apache with modsecurity
Greeting to Thomas Heil, from our German partner Olanis, for his help in Apache and modsecurity configuration assistance. What is a Web Application Firewall (WAF)? Years ago, it was common to protect...
View ArticleClik here to view.
high performance WAF platform with Naxsi and HAProxy
Synopsis I’ve already described WAF in a previous article, where I spoke about WAF scalability with apache and modsecurity. One of the main issue with Apache and modsecurity is the performance. To...
View ArticleClik here to view.
wordpress CMS brute force protection with HAProxy
Brute force attacks Brute force is a pretty simple type of attacks: it consists of massively send requests to a URL with different parameter each time. The main purpose is to try to find the right...
View ArticleApache cdorked backdoor detection
Apache Cdorked.A backdoor This is a pretty recent attack, using Cpanel to change the Apache httpd binary by a compromised one which embeds a backdoor. A few articles with more details are available...
View ArticlePacketshield: quand votre load-balancer vous protège contre les DDOS!
Les attaques par DDOS Il y a quelques temps, nous avions publié sur ce blog, un article expliquant comment utiliser un load-balancer pour se protéger contre les attaques de type DDOS applicatif:...
View ArticleClik here to view.
What’s new in HAProxy 1.6
[ANNOUNCE] HAProxy 1.6.0 released Yesterday, 13th of October, Willy has announced the release of HAProxy 1.6.0, after 16 months of development! First good news is that release cycle goes a bit faster...
View ArticleWhat is a slow POST Attack and how turn HAProxy into your first line of Defense?
One of the biggest security challenges that companies face in today’s modern climate is the POST attack. Unlike a more traditional “Denial-of-Service” attack, POST attacks target a servers logical...
View Article