mod_security2
Paul Schmehl
pauls at utdallas.edu
Sat Jul 14 22:38:45 UTC 2007
--On July 14, 2007 1:03:24 PM +0300 Bazy <bazy at goofy.celuloza.ro> wrote:
> Hi guys,
>
> Do any of you use mod_security2?
>
> An article just came up on HowToForge about it, and I'm skeptic about
> installing it on my FreeBSD box. Is mod_security2 ok? Will it load the
> CPU? Will it make apache22 slow?
>
> http://www.howtoforge.com/apache2_mod_security_debian_etch "ModSecurity
> is an Apache module that provides intrusion detection and prevention for
> web applications. It aims at shielding web applications from known and
> unknown attacks, such as SQL injection attacks, cross-site scripting,
> path traversal attacks, etc."
>
I use mod_security on apache13 on a server that gets about 7 million hits
a month. I haven't noticed any problems. I've been using it for several
years now.
Paul Schmehl (pauls at utdallas.edu)
Senior Information Security Analyst
The University of Texas at Dallas
http://www.utdallas.edu/ir/security/
More information about the freebsd-questions
mailing list