Guest User!

You are not Sophos Staff.

Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 7 replies
  • Subscribers 1 subscriber
  • Views 6465 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

WAF block DDOS attack

Azwan
Hi Everyone,

As per title, does anyone have any detail info regarding prevent DDOS attack with WAF [:S]. Thanks


This thread was automatically locked due to age.
Parents
  • 0
    WAF is for XSS and sql injections

    Perhaps you mean in the current way Astaro implemented the WAF ?(as a WAF can do a lot, I mean a lot more)
    Depends, in some cases Astaro's WAF may not even address those and in others can do better than that.

    The important point is that the underlying components are currently underused and it's a lot of potential underneath(e.g. mod_security).

    Might worth reading:
    https://community.sophos.com/products/unified-threat-management/astaroorg/f/57/t/50031 

    Speaking about Apache, there are some modules that can be used, like mod_reqtimeout(in combination with mod_security rules).
Reply
  • 0
    WAF is for XSS and sql injections

    Perhaps you mean in the current way Astaro implemented the WAF ?(as a WAF can do a lot, I mean a lot more)
    Depends, in some cases Astaro's WAF may not even address those and in others can do better than that.

    The important point is that the underlying components are currently underused and it's a lot of potential underneath(e.g. mod_security).

    Might worth reading:
    https://community.sophos.com/products/unified-threat-management/astaroorg/f/57/t/50031 

    Speaking about Apache, there are some modules that can be used, like mod_reqtimeout(in combination with mod_security rules).
Children
No Data
Share Feedback
×

Submitted a Tech Support Case lately from the Support Portal?