Welcome Guest. Please Login or Register  


You are here: Index > Virtualizor - Virtual Server Control Panel > Suggestions > Topic : Add ModSecurity WAF (Web Application Firewall) for NGINX with option for OWASP ModSecurity Core Rule Set (CRS) and Comodo Web Application Firewall (CWAF) Rule in Virtualizor


Poll
Poll Question : Add ModSecurity WAF for NGINX + OWASP CRS & Comodo WAF Rule in Virtualizor ?
Yes (3) (100%)
No (0) (0%)

Total Votes : 3




Threaded Mode | Print  

 Add ModSecurity WAF (Web Application Firewall) for NGINX with option for OWASP ModSecurity Core Rule Set (CRS) and Comodo Web Application Firewall (CWAF) Rule in Virtualizor, Security & Hardening of Virtualizor. (0 Replies, Read 201279 times)
Automata
Group: Member
Post Group: Newbie
Posts: 6
Status:

"Stay hungry, stay foolish."
To your kind attention:

Mr. Pulkit Gupta (CEO) , Mr. Chirag Nagda (Virtualizor Product Manager) , all Virtualizor Software Developer and all Virtualizor Team.

Premise:

This my post and / or intervention wants to be absolutely constructive in order to be able to improve Virtualizor for the benefit of all.
I am convinced that currently, today, Virtualizor it is one of the best software available on the market, if not even the best ever both as regards the completeness of the options, both for the ease of use, both for the performance, for the safety, for the price and also for the excellent support and assistance service as well as for the extreme professionalism and courtesy of the whole Virtualizor Team.

Security & Hardening of Virtualizor: WAF (Web Application Firewall)

As we all know Virtualizor run under NGINX. ModSecurity WAF (Web Application Firewall) with option for OWASP ModSecurity Core Rule Set (CRS) and Comodo Web Application Firewall (CWAF) Rule adds another very important layer for security.
A detailed description follows:

ModSecurity WAF (Web Application Firewall) for NGINX:

The ModSecurity-nginx connector is the connection point between nginx and libmodsecurity (ModSecurity v3). Said another way, this project provides a communication channel between nginx and libmodsecurity. This connector is required to use LibModSecurity with nginx.

The ModSecurity-nginx connector takes the form of an nginx module. The module simply serves as a layer of communication between nginx and ModSecurity.

Notice that this project depends on libmodsecurity rather than ModSecurity (version 2.9 or less).

What is the difference between this project and the old ModSecurity add-on for nginx?

The old version uses ModSecurity standalone, which is a wrapper for Apache internals to link ModSecurity to nginx. This current version is closer to nginx, consuming the new libmodsecurity which is no longer dependent on Apache. As a result, this current version has less dependencies, fewer bugs, and is faster. In addition, some new functionality is also provided - such as the possibility of use of global rules configuration with per directory/location customizations (e.g. SecRuleRemoveById).

Official link of ModSecurity WAF (Web Application Firewall) for NGINX:

github.com/SpiderLabs/ModSecurity-nginx

OWASP ModSecurity Core Rule Set (CRS):

The OWASP ModSecurity Core Rule Set (CRS) is a set of generic attack detection rules for use with ModSecurity or compatible web application firewalls. The CRS aims to protect web applications from a wide range of attacks, including the OWASP Top Ten, with a minimum of false alerts. The CRS provides protection against many common attack categories, including:

- SQL Injection (SQLi)
- Cross Site Scripting (XSS)
- Local File Inclusion (LFI)
- Remote File Inclusion (RFI)
- PHP Code Injection
- Java Code Injection    HTTPoxy
- Shellshock
- Unix/Windows Shell Injection
- Session Fixation
- Scripting/Scanner/Bot Detection
- Metadata/Error Leakages

Official link of OWASP ModSecurity Core Rule Set (CRS):

coreruleset.org

Comodo Web Application Firewall (CWAF) Rule:

Your web applications must be effectively protected against attack at all times. Comodo Web Application Firewall (CWAF) provides powerful, real-time protection for web applications and websites running on Apache, LiteSpeed and Nginx on Linux. CWAF supports ModSecurity rules, providing advanced filtering, security and intrusion protection.

Why you need it:

- Protect sensitive customer data
- Meet PCI compliance requirements
- Block unauthorized access
- Prevent SQL injection and Cross Site Scripting (XSS) attacks

Official link of Comodo Web Application Firewall (CWAF) Rule:

waf.comodo.com

Request to Virtualizor Team:

Please, Mr. Pulkit Gupta (CEO) , Mr. Chirag Nagda (Virtualizor Product Manager) , all Virtualizor Software Developer and all Virtualizor Team. , given that it is indisputable that ModSecurity WAF (Web Application Firewall) for NGINX with option for OWASP ModSecurity Core Rule Set (CRS) and Comodo Web Application Firewall (CWAF) Rule would bring a much greater degree of security to Virtualizor than it currently has and since the vast majority of users who use Virtualizor, however, is forced to install ModSecurity WAF (Web Application Firewall) for NGINX with option for OWASP ModSecurity Core Rule Set (CRS) and Comodo Web Application Firewall (CWAF) Rule precisely to improve the overall security of Virtualizor and since you are a large leading company in the sector with dozens of your developers, i don't think it's a problem for you to be able to satisfy this request that benefits everyone.

Please add it to your to-do list and be able to implement it as soon as possible.

Looking forward to your reply, I thank you in advance for your support.

-----------------------
« Stay hungry, stay foolish. »
IP: --   

« Previous    Next »

Threaded Mode | Print  



Jump To :


Users viewing this topic
1 guests, 0 users.


All times are GMT. The time now is March 28, 2024, 3:16 pm.

  Powered By AEF 1.0.8 © 2007-2008 Electron Inc.Queries: 12  |  Page Created In:0.024