ModSecurity Handbook: Getting Started - Bad Request
ModSecurity Handbook: Getting Started - Bad Request
ModSecurity Handbook: Getting Started - Bad Request
You also want an ePaper? Increase the reach of your titles
YUMPU automatically turns print PDFs into web optimized ePapers that Google loves.
viii<br />
Geolocation 159<br />
Real-Time Block Lists 160<br />
Local Reputation Management 161<br />
Integration with Other Apache Modules 161<br />
Conditional Logging 163<br />
Header Manipulation 163<br />
Securing Session Cookies 164<br />
Advanced Blocking 165<br />
Immediate Blocking 165<br />
Keeping Detection and Blocking Separate 166<br />
User-Friendly Blocking 167<br />
External Blocking 168<br />
Honeypot Diversion 169<br />
Delayed Blocking 169<br />
Score-Based Blocking 170<br />
Making the Most of Regular Expressions 171<br />
How <strong>ModSecurity</strong> Compiles Patterns 172<br />
Changing How Patterns Are Compiled 173<br />
Common Pattern Problems 174<br />
Regular Expression Denial of Service 174<br />
Resources 175<br />
Working with Rule Sets 175<br />
Deploying Rule Sets 176<br />
Writing Rules for Distribution 177<br />
Resources for Rule Writers 179<br />
Summary 180<br />
10. Performance . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 181<br />
Understanding Performance 181<br />
Top 10 Performance Rules 182<br />
Performance Tracking 184<br />
Performance Metrics 184<br />
Performance Logging 185<br />
Real-Time Performance Monitoring 185<br />
Load Testing 185<br />
Rule Benchmarking 189<br />
Preparation 189<br />
Test Data Selection 190<br />
Performance Baseline 192<br />
Optimizing Pattern Matching 194