Nginx配置基于ModSecurity配置Waf

上次写过一篇关于WAF相关的文档(Nginx部署配置应用级防火墙WAF),这次介绍一款国外的关于WAF的产品。

参考文档:
1:https://raw.githubusercontent.com/SpiderLabs/owasp-modsecurity-crs/v3.0/master/INSTALL
2:https://github.com/SpiderLabs/ModSecurity/tree/nginx_refactoring
3:http://www.52os.net/articles/nginx-use-modsecurity-module-as-waf.html
4:http://serverfault.com/questions/450917/modsecurity-compile-error-on-nginx
5:http://www.52os.net/articles/nginx-use-modsecurity-module-as-waf.html
6:https://github.com/SpiderLabs/ModSecurity/wiki/Reference-Manual
7:http://www.2cto.com/article/201407/319878.html
8:https://modsecurity.org/crs/
9:http://blog.slogra.com/post-668.html
10:http://www.codeweblog.com/nginx%E9%85%8D%E5%90%88modsecurity%E5%AE%9E%E7%8E%B0waf%E5%8A%9F%E8%83%BD/
11:http://stackoverflow.com/questions/31537106/core-owasp-modsecurity-allowing-json
12:http://www.tuicool.com/articles/Bfyi2en
13:http://stackoverflow.com/questions/35202761/json-support-was-not-enabled-modsecurity
14:https://www.trustwave.com/Resources/SpiderLabs-Blog/ModSecurity-Advanced-Topic-of-the-Week--JSON-Support/
15:https://forums.cpanel.net/threads/modsecurity-auto-updater.147745/

Byrd

发表评论

:?: :razz: :sad: :evil: :!: :smile: :oops: :grin: :eek: :shock: :???: :cool: :lol: :mad: :twisted: :roll: :wink: :idea: :arrow: :neutral: :cry: :mrgreen: