Building a Security Shield for Your Applications with NGINX & Wallarm td { padding-right: 10px; } This post is adapted from a presentation by Stepan Ilyan of Wallarm at nginx.conf in September 2016. You can view a recording of the presentation on YouTube. Table of Contents 0:00 Introduction   Who Am I? 0:34 Some Stats 1:38 Agenda 2:11 Why NGINX? 2:41 Attack Blocking with NGINX 3:05 Chapter 1 – Detect and Block 3:14 Tip #1 – Use ModSecurity WAF   Deployment is Easy   What The Rules Look Like   Core Rule Set (CRS)   More Rules, More Overhead   When ModSecurity Is A Pain   Best Practices   Use Request-Response   ModSecurity Handbook 9:27 Tip #2 – Use NAXSI   NAXSI Security Rules   Scoring-Based Protection   Example for SQLi   Whitelists   Pros and Cons   Kibana and Elasticsearch 12:57 Tip #3 – Try [ more... ]

The post Building a Security Shield for Your Applications with NGINX & Wallarm appeared first on 지락문화예술공작단.