[Owasp-brazilian] WSGW - Web Security Gateway for Secure Apache

Rodrigo Montoro (Sp0oKeR) spooker at gmail.com
Mon Apr 14 10:59:28 EDT 2008


Sim, ele é o modsecurity com adicionais =)!


INTERNET --------  Web Gateway ----------- Servidores Internos

Modsecurity é um web application firewall, que voce intercepta e
baseado em fases de resquest e response e baseado nas suas regras,
voce aceita, redireciona ou rejeita.

http://www.modsecurity.org para mais info.

[]zz! Rodrigo Montoro (Sp0oKeR)

On Mon, Apr 14, 2008 at 11:47 AM, Ricardo Klein <klein.rfk at gmail.com> wrote:
> isso seria quase como um IPS, o HLBR ?
> mas pra aplicações WEB?
>
> ele vai ficar entao entre os servers www e a WEB ?
>
> 2008/4/14, Rodrigo Montoro (Sp0oKeR) <spooker at gmail.com>:
> >
> >
> >
> > The Web Security Gateway is a security-centric distribution of the
> > Apache web server, bundled with additional security modules, and
> > configured as a front-end (reverse) HTTP proxy. The goal is to mirror
> > most of the features of commercial web application "firewalls", with
> > free and Open-Source software.
> >
> > The Web Security Gateway provides a configurable caching,
> > authentication, input validation, and IDS / IPS layer for web
> > applications. It can be placed in front of diverse web environments,
> > and is capable of protecting almost any web application, without
> > modifications to the code running on the protected app.
> >
> >
> > Alguém ja usou? Parece interessante!
> >
> >
> http://www.darknet.org.uk/2008/04/wsgw-web-security-gateway-for-secure-apache/
> >
> > []zz!
> >
> > --
> > ===========================
> > Rodrigo Montoro (Sp0oKeR)
> > Security Analyst
> > SnortCP / RHCE / LPIC-I / MCSO
> > http://www.spookerlabs.com.br
> > http://www.linkedin.com/in/spooker
> > ===========================
> > _______________________________________________
> > Owasp-brazilian mailing list
> > Owasp-brazilian at lists.owasp.org
> > https://lists.owasp.org/mailman/listinfo/owasp-brazilian
> >
>
>
>
> --
> Att...
>
> Ricardo Felipe Klein
>  FAMEG NSI - Núcleo de Sistemas de Informação
>
> "I think of PHP very much like I think of chess: It's very easy to learn,
> but incredibly difficult to truly master."
> John Coggeshall (Senior Member of Zend Technologies' Global Services Group)
> _______________________________________________
>  Owasp-brazilian mailing list
>  Owasp-brazilian at lists.owasp.org
>  https://lists.owasp.org/mailman/listinfo/owasp-brazilian
>
>



-- 
===========================
Rodrigo Montoro (Sp0oKeR)
Security Analyst
SnortCP / RHCE / LPIC-I / MCSO
http://www.spookerlabs.com.br
http://www.linkedin.com/in/spooker
===========================


More information about the Owasp-brazilian mailing list