Home | Amazing | Today | Tags | Publishers | Years | Account | Search 
ModSecurity Handbook

Buy
ModSecurity Handbook, 9781907117022 (1907117024), Feisty Duck, 2010

ModSecurity Handbook is the definitive guide to ModSecurity, a popular open source web application firewall. Written by Ivan Ristic, who designed and wrote much of ModSecurity, this book will teach you everything you need to know to monitor the activity on your web sites and protect them from attack. Situated between your web sites and the world, web application firewalls provide an additional security layer, monitoring everything that comes in and everything that goes out. They enable you to perform many advanced activities, such as real-time application security monitoring, access control, virtual patching, HTTP traffic logging, continuous passive security assessment, and web application hardening.

They can be very effective in preventing application security attacks, such as cross-site scripting, SQL injection, remote file inclusion, and others. Considering that most web sites today suffer from one problem or another, ModSecurity Handbook will help anyone who has a web site to run.

The topics covered include:

- Installation and configuration of ModSecurity

- Logging of complete HTTP traffic

- Rule writing, in detail

- IP address, session, and user tracking

- Session management hardening

- Whitelisting, blacklisting, and IP reputation management

- Advanced blocking strategies

- Integration with other Apache modules

- Working with rule sets

- Virtual patching

- Performance considerations

- Content injection

- XML inspection

- Writing rules in Lua

- Extending ModSecurity in C

The book is suitable for all reader levels: it contains step-by-step installation and configuration instructions for those just starting out, as well as detailed explanations of the internals and discussion of advanced techniques for seasoned users. The official ModSecurity Reference Manual is included in the second part of the book. Digital version available. For more information and to access the online companion, go to www.modsecurityhandbook.com

(HTML tags aren't allowed.)

Synthesizable VHDL Design for FPGAs
Synthesizable VHDL Design for FPGAs

The methodology described in this book is the result of many years of research experience in the field of synthesizable VHDL design targeting FPGA based platforms. VHDL was first conceived as a documentation language for ASIC designs. Afterwards, the language was used for the behavioral simulation of ASICs, and also as a design input for...

The Best Damn Firewall Book Period, Second Edition
The Best Damn Firewall Book Period, Second Edition
The Second Edition of the Best Damn Firewall Book Period is completely revised and updated to include all of the most recent releases from Microsoft, Cisco, Juniper Network, SonicWALL, and Check Point.

Compiled from the best of the Syngress firewall library and authored by product experts such as Dr. Tom Shinder on ISA Server, this
...
Introduction to Design Patterns in C++ with Qt (2nd Edition)
Introduction to Design Patterns in C++ with Qt (2nd Edition)

I still remember how I first got to know C++ and Qt. It was around 15 years ago while working on my diploma thesis. Most of the development we did at that time was done in Fortran and C. I was working on a Linux system with FVWM as a window manager. One day I read an article about KDE—a cool, new open source project...


Emergence in Games (Charles River Media Game Development)
Emergence in Games (Charles River Media Game Development)
The future direction of game development is towards more flexible, realistic, and interactive game worlds. However, current methods of game design do not allow for anything other than pre-scripted player exchanges and static objects and environments. An emergent approach to game development involves the creation of a globally designed game system...
SAS/INSIGHT 9.1 User's Guide
SAS/INSIGHT 9.1 User's Guide
This title is your complete documentation source for SAS/INSIGHT software, including a usage section that explains how to accomplish particular tasks as well as a reference section that provides comprehensive descriptions of data, graphs, and analyses.

SAS/INSIGHT software is a tool for data exploration and analysis. With it you can
...
The Twice-Born: Life and Death on the Ganges
The Twice-Born: Life and Death on the Ganges

In The Twice-Born, Aatish Taseer embarks on a journey of self-discovery in an intoxicating, unsettling personal reckoning with modern India, where ancient customs collide with the contemporary politics of revivalism and revenge

When Aatish Taseer first came to Benares, the spiritual capital of Hinduism, he...

©2021 LearnIT (support@pdfchm.net) - Privacy Policy