NYCPHP Meetup

[nycphp-talk] Using an IDS to lock down web apps ...

Chris Snyder csnyder at chxo.com
Wed Aug 27 12:40:04 EDT 2003


Hans Zaunere wrote:

> There was an apache mod posted around these parts that did request 
> verification, although I can't put my finger on it now.  Having an IDS 
> be so deeply knowledgeable about an app, however, may be tricky and 
> costly (in regards to performance and maintenance).
>
mod_security I believe. http://www.modsecurity.org/

As I recall, nobody on the list had tried it yet, but it might do what 
you want.




More information about the talk mailing list