Skip site navigation (1)Skip section navigation (2)
Date:      Sat, 14 Jul 2007 23:05:51 +1000
From:      Norberto Meijome <freebsd@meijome.net>
To:        Bazy <bazy@goofy.celuloza.ro>
Cc:        freebsd-questions@freebsd.org
Subject:   Re: mod_security2
Message-ID:  <20070714230551.5f62e80c@localhost>
In-Reply-To: <46989F6C.9030802@goofy.celuloza.ro>
References:  <46989F6C.9030802@goofy.celuloza.ro>

Next in thread | Previous in thread | Raw E-Mail | Index | Archive | Help
On Sat, 14 Jul 2007 13:03:24 +0300
Bazy <bazy@goofy.celuloza.ro> wrote:

> An article just came up on HowToForge about it, and I'm skeptic about installing it on my FreeBSD box.
> Is mod_security2 ok? 

I dont know, sorry

> Will it load the CPU?

more than not running it? definitely. Too much that is unacceptable for your needs? i dont think we can tell, give it a try in a test server and see how it affects your loads.

> Will it make apache22 slow?

along the same lines :) executing code that is not directly related to serving your pages will mean your server will have less time for processing the web requests... is this acceptable, given the benefits you may get? i dont know :)

> 
> http://www.howtoforge.com/apache2_mod_security_debian_etch "ModSecurity is an Apache module that provides intrusion detection and prevention for web applications. It aims at shielding web applications from known and unknown attacks, such as SQL injection attacks, cross-site scripting, path traversal attacks, etc."

it sounds like a pretty useful module...may be doing some heavy lifting though..

let us know what you find out :)

_________________________
{Beto|Norberto|Numard} Meijome

Life is not measured by the number of breaths we take, but by the moments that take our breath away.

I speak for myself, not my employer. Contents may be hot. Slippery when wet. Reading disclaimers makes you go blind. Writing them is worse. You have been Warned.



Want to link to this message? Use this URL: <http://docs.FreeBSD.org/cgi/mid.cgi?20070714230551.5f62e80c>