public marks

PUBLIC MARKS with tags security & apache



2010 incident report for 04/09/2010 : Apache Infrastructure Team

by François Hodierne (via)

We hope our disclosure has been as open as possible and true to the ASF spirit. Hopefully others can learn from our mistakes.





by vrossign
Fail2ban scans log files like /var/log/pwdfail or /var/log/apache/error_log and bans IP that makes too many password failures. It updates firewall rules to reject the IP address.

Welcome to REMO | REMO - Rule Editor for ModSecurity

by mbertier (via)
This is a project to build a graphical rule editor for ModSecurity with a positive/whitelist approach.


Certificat SSL client apache

by lecyborg
SSL côté client Pour accéder à ce serveur, le client devra posséder un certificat authentifié par (c'est à dire signé ou crypté par la clé privée de) l'autorité de certification choisie. Pour produire un tel certificat au format PKCS#12

Kerberos Module for Apache

by lecyborg
Explique comment intégrer Kerberos dans un htaccess

Configuration du SSO NTLM pour Apache 2

by lecyborg
Tutorial en français pour permettre à apache d'authentifier les gens sous Windows

BinarySEC secures web applications and sites against malicious traffic

by RichardTouret
BinarySEC is an intelligent web application firewall. It runs on Apache web server as a module . Its artificial intelligence engine learns normal traffic received on a website or any web application (provided it uses Apache) and is then able to stop suspicious HTTP requests. It has two modes : alert (suspicious traffic is just reported, not stopped) and blocking mode. The webmaster (or the admin) has the ability to make the AI engine learn normal traffic so that these requests' profiles generate no more false positives. After a few days, no more false alerts will appear, only suspicious traffic will have been blocked. BinarySEC is a relevant tool to harden a web application. A free trial is available on our website. It installs in a few minutes

mod_evasive : apache security module

by clochix & 1 other
mod_evasive is an evasive maneuvers module for Apache to provide evasive action in the event of an HTTP DoS or DDoS attack or brute force attack. It is also designed to be a detection and network management tool, and can be easily configured to talk to ipchains, firewalls, routers, and etcetera. mod_evasive presently reports abuses via email and syslog facilities.

PUBLIC TAGS related to tag security

api +   apple +   authentication +   best practices +   browser +   cloudflare +   coding +   conception web +   crypto +   cyber +   data +   ddos +   docker +   firefox +   github +   google +   hack +   hacking +   hashing +   html5 +   http +   https +   information +   internet +   java +   javascript +   linux +   mot de passe +   oAuth +   online +   password +   passwords +   php +   plugin +   privacy +   readme +   scanner +   secu +   securité +   server +   sms +   sécurité +   software +   ssl +   technology +   tool +   tools +   tracking +   web +   wordpress +  

Active users

François Hodierne
last mark : 04/10/2016 07:49

last mark : 11/04/2011 16:38

last mark : 12/11/2010 08:54

last mark : 28/08/2009 13:53

last mark : 31/03/2008 09:16

last mark : 05/03/2008 12:16

last mark : 25/01/2008 16:18

last mark : 19/11/2007 09:48

last mark : 14/09/2007 12:24

last mark : 21/03/2007 06:33

last mark : 12/01/2007 13:18