Home | Amazing | Today | Tags | Publishers | Years | Account | Search 
ModSecurity Handbook

Buy
ModSecurity Handbook, 9781907117022 (1907117024), Feisty Duck, 2010

ModSecurity Handbook is the definitive guide to ModSecurity, a popular open source web application firewall. Written by Ivan Ristic, who designed and wrote much of ModSecurity, this book will teach you everything you need to know to monitor the activity on your web sites and protect them from attack. Situated between your web sites and the world, web application firewalls provide an additional security layer, monitoring everything that comes in and everything that goes out. They enable you to perform many advanced activities, such as real-time application security monitoring, access control, virtual patching, HTTP traffic logging, continuous passive security assessment, and web application hardening.

They can be very effective in preventing application security attacks, such as cross-site scripting, SQL injection, remote file inclusion, and others. Considering that most web sites today suffer from one problem or another, ModSecurity Handbook will help anyone who has a web site to run.

The topics covered include:

- Installation and configuration of ModSecurity

- Logging of complete HTTP traffic

- Rule writing, in detail

- IP address, session, and user tracking

- Session management hardening

- Whitelisting, blacklisting, and IP reputation management

- Advanced blocking strategies

- Integration with other Apache modules

- Working with rule sets

- Virtual patching

- Performance considerations

- Content injection

- XML inspection

- Writing rules in Lua

- Extending ModSecurity in C

The book is suitable for all reader levels: it contains step-by-step installation and configuration instructions for those just starting out, as well as detailed explanations of the internals and discussion of advanced techniques for seasoned users. The official ModSecurity Reference Manual is included in the second part of the book. Digital version available. For more information and to access the online companion, go to www.modsecurityhandbook.com

(HTML tags aren't allowed.)

Security in Computing, Third Edition
Security in Computing, Third Edition

Security in Computing, Third Edition systematically demonstrates how to control failures of confidentiality, integrity, and availability in applications, databases, operating systems, and networks alike.

This sweeping revision of the field's classic guide to computer...

More About High-volume Web Sites (IBM Redbooks)
More About High-volume Web Sites (IBM Redbooks)

In 1999, Dr Willy Chiu, noticing the emergence of many large and complex customer Web sites, and observing how they often failed to deliver the expected robustness and customer satisfaction, set up a new team within IBM called the High-Volume Web Sites (HVWS) team. This team was chartered to work with customers and IBM internal teams involved in...

Oracle Database 11g DBA Handbook (Osborne Oracle Press)
Oracle Database 11g DBA Handbook (Osborne Oracle Press)
The Essential Resource for Oracle DBAs--Fully Updated and Expanded

Manage a flexible, highly available Oracle database with help from the expert information contained in this exclusive Oracle Press guide. Fully revised to cover every new feature and utility, Oracle Database 11g DBA Handbook shows how to perform a new...


McGraw-Hill's HVAC Licensing Study Guide
McGraw-Hill's HVAC Licensing Study Guide

Get All the Practice Questions and Answers, Calculations, and Troubleshooting Tips You Need to Ace the major HVAC Licensing Exams!

HVAC technicians and students alike can turn to the HVAC Licensing Study Guide for everything they need to prepare for and pass the major HVAC licensing exams on the very first try! Designed...

Strategic Thinking: A Nine Step Approach to Strategy and Leadership for Managers and Marketers
Strategic Thinking: A Nine Step Approach to Strategy and Leadership for Managers and Marketers


Now in its third edition, Strategic Thinking, takes you step by step through the questions to ask, in order to formulate strategies and write clear and concise strategic plans. Based on three core actions - creating knowledge, innovating ideas and implementing change -...

Professional BlazeDS: Creating Rich Internet Applications with Flex and Java
Professional BlazeDS: Creating Rich Internet Applications with Flex and Java

A hands-on guide to creating Rich Internet Applications (RIA) using BlazeDS

BlazeDS enables you to easily connect to back-end distributed data and push data in real time to Adobe Flex and Adobe AIR applications in order to garner more responsive Rich Internet Application (RIA) experiences. It is a scalable option for Flex and Java...

©2020 LearnIT (support@pdfchm.net) - Privacy Policy