English | Size: 3.58 MB
Genre: eLearning
ModSecurity Handbook is the definitive guide to ModSecurity, the popular open source web application firewall. Written by Christian Folini and ModSecurity’s original developer, Ivan Ristic, this book will teach you how to monitor activity on your web sites and protect them from attack.
Situated between your web sites and the world, web application firewalls provide an additional security layer, monitoring everything that comes in and everything that goes out in real time. They enable you to perform many advanced activities, such as access control, virtual patching, HTTP traffic logging, continuous passive security assessment, and web application hardening. Web application firewalls can be very effective in preventing application security attacks, such as SQL injection, cross-site scripting, remote file inclusion, and others that plague most web sites today.
ModSecurity Handbook covers the following topics, which will help anyone with a web site to run:
Installation and configuration of ModSecurity
Detailed guide to writing rules
IP address, session, and user tracking
Session management hardening
Whitelisting, blacklisting, and IP reputation management
Anomaly scoring and advanced blocking strategies
Integration with other Apache modules
Working with predefined rule sets
Virtual patching and content injection
Performance considerations
Writing rules in Lua and extending ModSecurity in C
Detailed coverage of ModSecurity’s numerous directives, variables, transformations, and operators
The book is suitable for all reader levels: It takes newcomers by the hand to turn them into seasoned users, while seasoned users will learn advanced techniques from the top experts on the subject and find hidden clues to master the rule language. An updated ModSecurity Reference Manual is included in the second part of the book.
nitroflare.com/view/5EA9A470C892C5D/Modsecurity-Handbook-Second-edition.20.1.rar
If any links die or problem unrar, send request to
forms.gle/e557HbjJ5vatekDV9