[nycphp-talk] Using an IDS to lock down web apps ...
csnyder at chxo.com
Wed Aug 27 12:40:04 EDT 2003
Hans Zaunere wrote:
> There was an apache mod posted around these parts that did request
> verification, although I can't put my finger on it now. Having an IDS
> be so deeply knowledgeable about an app, however, may be tricky and
> costly (in regards to performance and maintenance).
mod_security I believe. http://www.modsecurity.org/
As I recall, nobody on the list had tried it yet, but it might do what
More information about the talk