New on LowEndTalk? Please Register and read our Community Rules.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
Comments
@combahton_it?
Its called WAF
It's called vertical rivers.
XSS and SQL injection need to be prevented at the origin server through good coding practice.
WAF (Web Application Firewall) has too many false positives.
For example, it's impossible to post certain JavaScript snippets on this forum due to overly sensitive WAF.
Consequently, my best contents are no longer posted on this forum.
Do you really want to cripple the user experience?
Don't use a WAF to solve your security problems.
Plain and simple.
Imperva is probably #1 in this area.
Our UK data center location providers our racks with Level 7 DDoS protection with Corero which works really well BUT as others have said things like SQL injection etc hacks should be solved at the application level as even the best DDoS protection could allow something in and hack your application.
Obviously, I know how to prevent these attacks but I always use a WAF as an extra layer protection.