Evaluate mod_security for preventing web server exploits and other issues

antville / antville

The Queen Mum of Weblog Hosting Systems – written in server-side JavaScript since 2001.

https://antville.org

Other

77 stars 8 forks source link

Evaluate mod_security for preventing web server exploits and other issues #118

Open GoogleCodeExporter opened 9 years ago

GoogleCodeExporter commented 9 years ago

mod_security is a so-called web application firewall and available as Apache 
module in the official Ubuntu distribution [1]. It promises to be able to 
detect and prevent malicious client software, XSS, all kinds of injection types 
as well as trojans and backdoors [2].

Clearly enabling such module would be an advantage as it shifts responsibility 
from app development to server deployment, thus relieving Antville code.

--
[1] http://www.modsecurity.org
[2] 
http://www.owasp.org/index.php/Category:OWASP_ModSecurity_Core_Rule_Set_Project

Original issue reported on code.google.com by interf...@p3k.org on 14 Jun 2010 at 7:40

GoogleCodeExporter commented 9 years ago

Original comment by interf...@p3k.org on 20 Jan 2011 at 11:17

Added labels: Milestone-Release-1.3

GoogleCodeExporter commented 9 years ago

Original comment by interf...@p3k.org on 29 May 2011 at 9:08

Added labels: Milestone-Release-1.4

GoogleCodeExporter commented 9 years ago

Although it will not solve all security issues we certainly should give it a 
try.

Original comment by interf...@p3k.org on 21 Apr 2012 at 4:27

Changed state: Started

GoogleCodeExporter commented 9 years ago

Original comment by m...@tobischaefer.com on 28 Jul 2013 at 8:50

Added labels: Milestone-Release-1.5
Removed labels: Milestone-Release-1.4

GoogleCodeExporter commented 9 years ago

Original comment by m...@tobischaefer.com on 7 Mar 2015 at 5:59

github-actions[bot] commented 3 years ago

Stale issue message