Difference between revisions of "Open Source Web Entry Firewall"

Revision as of 15:36, 17 September 2010 (view source) Mark.bristow (talk | contribs) (Created page with '== The presentation == rightWhat makes the difference between a web application firewall and a web entry server? Learn in this talk more about w…')		Revision as of 05:00, 21 September 2010 (view source) Dallendoug (talk | contribs) (added link header) Newer edit →
Line 1:		Line 1:
		+	[[Image:468x60-banner-2010.gif|link=http://www.owasp.org/index.php?title=OWASP_AppSec_DC_2010]]
		+
		+	[https://guest.cvent.com/EVENTS/Register/IdentityConfirmation.aspx?e=d52c6f5f-d568-4e16-b8e0-b5e2bf87ab3a Registration] | [https://resweb.passkey.com/Resweb.do?mode=welcome_gi_new&groupID=2766908 Hotel] | [http://www.dcconvention.com/ Walter E. Washington Convention Center]
		+	<br>
	== The presentation  ==		== The presentation  ==

---

Revision as of 05:00, 21 September 2010

Registration | Hotel | Walter E. Washington Convention Center

The presentation

What makes the difference between a web application firewall and a web entry server? Learn in this talk more about web entry servers, architecture, pre-authentication, shared memory based session store, session hiding and service level access control.

The talk will start from a clean apache web server that will then be turned into a reverse proxy, from where mod_security enables the web app firewall capabilities. In the next step, the audience will learn and see how to turn this WAF into a Pre-Auth engine with url based access controls and session hiding features.

At the end of the talk, we have setup a fully operational, secure and open source web entry server in front of Facebook.

The speaker

Speaker bio will be posted shortly.