This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org

Open Source Web Entry Firewall

From OWASP
Revision as of 15:36, 17 September 2010 by Mark.bristow (talk | contribs) (Created page with '== The presentation == rightWhat makes the difference between a web application firewall and a web entry server? Learn in this talk more about w…')

(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to: navigation, search

The presentation

Owasp logo normal.jpg
What makes the difference between a web application firewall and a web entry server? Learn in this talk more about web entry servers, architecture, pre-authentication, shared memory based session store, session hiding and service level access control.

The talk will start from a clean apache web server that will then be turned into a reverse proxy, from where mod_security enables the web app firewall capabilities. In the next step, the audience will learn and see how to turn this WAF into a Pre-Auth engine with url based access controls and session hiding features.

At the end of the talk, we have setup a fully operational, secure and open source web entry server in front of Facebook.

The speaker

Speaker bio will be posted shortly.

Retrieved from "https://wiki.owasp.org/index.php?title=Open_Source_Web_Entry_Firewall&oldid=89486"