Talk to us Get started

Collection of 96 posts

Security

Learn how to strengthen your infrastructure with Web Application Firewalls (WAF) and advanced security features. Perform SSL/TLS offloading and protect against application layer threats to ensure your critical systems are always compliant and protected.

Hardening the edge: Essential security lessons for F5 users following the recent breach

Hardening the edge: Essential security lessons for F5 users following the recent breach

The question isn't whether another major vendor will suffer a breach — it's whether your infrastructure can survive it.

How Loadbalancer.org helped this medical imaging vendor centrally manage their load balancing estate

How Loadbalancer.org helped this medical imaging vendor centrally manage their load balancing estate

Enhanced visibility for more efficient and secure ADC management...

Cybersecurity series: Five security attacks WAFs can help you with...

Cybersecurity series: Five security attacks WAFs can help you with...

There seems to be a lot of confusion about the role of a Web Application Firewall (WAF) in application security, and what types of threat a WAF can help mitigate in your deployment...

Nicholas Turnbull

man typing on laptop working

The pros and cons of offloading TLS/SSL encryption and decryption to your ADC

TLS encryption (formerly known as SSL encryption) is used to improve the safety of data exchanged over a network. But where should it sit in your network architecture?..

man with glasses thinking

A beginner's guide to WAF: When and how should you use a Web Application Firewall?

Some network engineers think that Web Application Firewalls (WAFs) are so complicated, they've been known to run away and hide for days when they've encountered one...

Nicholas Turnbull

Lessons from InfoSec 2023: how to prevent a cyber crisis with a defense-in-depth strategy

Lessons from InfoSec 2023: how to prevent a cyber crisis with a defense-in-depth strategy

The talk of the town at InfoSec 2023 was the evolving cyber security battleground, and the practical steps organizations might take in order to mitigate some of these threats...

Joshua Turnbull

Why you shouldn't lose sleep over the commercial end-of-life of ModSecurity

Why you shouldn't lose sleep over the commercial end-of-life of ModSecurity

The ModSecurity web application firewall (WAF) engine is set to go end-of-life (EOL) on 1 July 2024...

Centralized management for enhanced security with the ADC Portal

Centralized management for enhanced security with the ADC Portal

You need a clear, comprehensive view of your entire load balancing estate to maintain control and security...

Richard Halcrow

Three scenarios for implementing time-based security and content switching on your load balancer

Three scenarios for implementing time-based security and content switching on your load balancer

It can sometimes be useful to make load balancing decisions based on the time and date. This allows you to conditionally refuse or redirect connections based on the time they're received...

Should a load balancer be your first line of defense against Denial of Service (DoS) attacks?

Should a load balancer be your first line of defense against Denial of Service (DoS) attacks?

There are two schools of thought on this: ‘yes, it should’ and ‘no, it shouldn't’. Let's look at the arguments both for and against...

OWASP doesn't want you to have crAPI security

OWASP doesn't want you to have crAPI security

Here's what we learned from crAPI about API security, and how a Web Application Firewall (WAF) can help you take things one step further...

Nicholas Turnbull

Security guard in black jacket

The role of load balancers in zero trust architectures

Getting on board with zero trust is the easy part. Actually applying these principles to your architecture is less black and white...

application security padlock and laptop keyboard

Report back from the OWASP Core Rule Set Community Summit and OWASP Global AppSec 2023: The WAF conundrum

I had the privilege of speaking in Dublin at this year's OWASP Core Rule Set Community Summit before then attending OWASP Global AppSec immediately afterwards...

How to create an SSL certificate

How to create an SSL certificate in Linux

I thought I would try and cover the basics here by explaining how to create an SSL certificate and the various files that you'll end up with...

Proactive network management for business continuity

High Availability

Proactive network management for business continuity

We'd all rather prevent a disaster than have to live with the consequences of one...

Handling large requests with a Web Application Firewall (WAF) while avoiding Denial of Service (DoS) attacks

Handling large requests with a Web Application Firewall (WAF) while avoiding Denial of Service (DoS) attacks

Sometimes, we need to pass unusually large HTTP requests through our WAF stack...

How to rate limit with HAProxy Stick Tables and the WAF

How to rate limit with HAProxy Stick Tables and the WAF

A while ago I was asked if it would be possible to apply some general rate limiting in HAProxy and the WAF, in order to help prevent DOS-style attacks on a customer's servers...

What can we learn from the recent F5 security vulnerability?

What can we learn from the recent F5 security vulnerability?

F5 recently announced a critical security vulnerability, allowing an attacker to bypass its iControl REST authentication, and execute commands such as creating or deleting files and disabling services...

When is it right to SSL offload?

When is it right to SSL offload?

It's a fair question, right? Let's take away the strain of SSL terminations from our application servers and let the load balancers deal with it. After all, why would we want to bog down our nifty application with network-level considerations?..

Spring Framework vulnerabilities

Spring Framework vulnerabilities

It is understandable that SysAdmins, DevOps, and most in the IT and Security Departments involved want to ensure all load balancers are fully patched and protected, given that our product plays an important role in their topology...

DoS vulnerability in OpenSSL related to certificate parsing (CVE-2022-0778)

DoS vulnerability in OpenSSL related to certificate parsing (CVE-2022-0778)

Customers with manually configured, custom client authentication deployments (rare) or using “re-encrypt to backend” to communicate with untrusted third-party servers (very rare) may be impacted...

PwnKit Vulnerability (CVE-2021-4034)

PwnKit Vulnerability (CVE-2021-4034)

A local privilege escalation vulnerability was found on polkit's pkexec utility. It is a critical vulnerability because it gives full root privileges to any local user or attacker...

ModSecurity DoS vulnerability (CVE-2021-42717)

ModSecurity DoS vulnerability (CVE-2021-42717)

All WAF vendors and services using ModSecurity are affected by this vulnerability (unless they have the vulnerable piece of code disabled, by chance)...

Does Niagara Networks have the answer to scaling Secure Web Gateways all the way up to 100G?

Does Niagara Networks have the answer to scaling Secure Web Gateways all the way up to 100G?

Network Security devices such as firewalls, WAF, SWG, IPS etc. are often deployed inline with bridge mode., which has two major problems...

Malcolm Turnbull

Simplifying web application security with the Core Rule Set v3

Simplifying web application security with the Core Rule Set v3

A WAF isn't a magic bullet, but, as part of a defense in depth strategy, a properly configured WAF should catch and stop common, everyday attacks...

Get Started Today, for Free

Try us out—no strings, no stress, just seriously good load balancing and top-notch support. Let's make your apps unstoppable!

Try for free Book a meeting