Tweetovi
- Tweetovi, trenutna stranica.
- Tweetovi i odgovori
- Medijski sadržaj
Blokirali ste korisnika/cu @CoreRuleSet
Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @CoreRuleSet
-
#Debian pushed the fix for#ModSecurity v3's#DoS#CVE-2019-19886 to the stable repository. https://tracker.debian.org/news/1096729/accepted-modsecurity-303-1deb10u1-source-amd64-into-proposed-updates-stable-new-proposed-updates/ …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
We have updated our blog post on
#CVE-2019-19886, after an article in the Daily Swig made it look as if the problem was caused by the first version of the patch by@IamAirWeen. The problem was the initial cookie parsing implementation in#ModSecurity 3.https://portswigger.net/daily-swig/modsecurity-devs-team-up-with-researchers-to-fix-dos-vulnerability …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Core Rule Set proslijedio/la je Tweet
New upload: modsecurity 3.0.4-1 by Ervin Hegedus into unstable... http://deb.li/buYh
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Core Rule Set proslijedio/la je Tweet
CVE-2019-19886 Trustwave ModSecurity 3.0.0 through 3.0.3 allows an attacker to send crafted requests that may, when sent quickly in large volumes, lead to the server becoming slow or unresponsive (Denial of Service) because of a flaw in Transac... https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19886 …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Core Rule Set proslijedio/la je Tweet
CVEnew: CVE-2019-19886 Trustwave ModSecurity 3.0.0 through 3.0.3 allows an attacker to send crafted requests that may, when sent quickly in large volumes, lead to the server becoming slow or unresponsive (Denial of Service) because of a flaw in Transac... https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19886 …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
ModSecurity 3.x suffers from a severe
#DoS vulnerability (#CVE-2019-19886) that also ruins the underlying webserver, typically#NGINX. CVSS is 7.5 (HIGH). Please upgrade 3.x to#ModSecurity 3.0.4. ModSec 2 is not affected. https://coreruleset.org/20200118/cve-2019-19886-high-dos-against-libmodsecurity-3/ …pic.twitter.com/KPlqWM7fzR
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Core Rule Set proslijedio/la je Tweet
New dates for ModSecurity / OWASP Core Rule Set Training: Zürich, 23-24 April with
@ChrFolini. Early Bird tickets (400 CHF off) until 29 Feb. Join us! https://www.feistyduck.com/training/modsecurity-training-course …@owasp#ModSecurity@CoreRuleSetpic.twitter.com/r9KUGYZ90P
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
ModSecurity 3.0.4 - a security release - has been published. We're covering this and many announcements with our new edition of the
#CRS3 news: https://coreruleset.org/20200114/crs-project-news-january-2020/ …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Core Rule Set proslijedio/la je Tweet
I just published a blog post about
@Owasp_DevSlop's CI pipeline Pixi-CRS (@CoreRuleSet )
https://dev.to/devslop/devslop-s-pixi-crs-pipeline-4bie …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Core Rule Set proslijedio/la je Tweet
Check out my latest article: Separating False Positives from Legitimate Violations https://www.linkedin.com/pulse/separating-false-positives-from-legitimate-violations-meuyou-noumba … via
@LinkedIn@ChrFolini#OWASP#CRS#CRS3Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Our
@bufrasch in action at the German@OWASP day.https://twitter.com/puzzleitc/status/1204702913232285696 …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
.
@litespeedtech has done a speedtest comparing Apache with NGINX with LiteSpeed without and with#ModSecurity enabled, with@CoreRuleSet and with Comodo rules. Very interesting numbers - and we need to look into this LiteSpeed thing...#CRS3https://blog.litespeedtech.com/2019/12/02/modsecurity-performance-apache-nginx-litespeed …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Core Rule Set proslijedio/la je Tweet
A masterclass in
#ModSecurity /@CoreRuleSet with@ChrFolini! This time we're in London. New dates coming soon, get in touch if you'd like to attend! https://www.feistyduck.com/training/modsecurity-training-course …pic.twitter.com/nqHnngttUJ
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Here we see the
@CoreRuleSet throw up in disgust after an@OwnCloud iOS app uploaded an image with content type "application/x-www-form-urlencoded" (I kid you not!!!). This blew away every previous record anomaly score in the history of mankind.




#CRS3pic.twitter.com/UPRr7UZLJc
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Here is a [German] article about a Swiss Bank going the Open Source way - including a
#ModSecurity /@CoreRuleSet#WAF right in the CI/CD pipeline. All integrated by our own@bufrasch.https://www.netzwoche.ch/news/2019-11-11/open-source-in-der-bankenwelt …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Core Rule Set proslijedio/la je Tweet
Web Application Firewalls machen nur Ärger und lassen sich mit DevOps nicht vereinbaren?
@bufrasch ist anderer Meinung und wird in ihrem Talk auf dem German OWASP Day zeigen, wie sie@ModSecurity mit dem OWASP@CoreRuleSet in DevOps-Umgebungen nutzt! https://god.owasp.de/schedule/Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Here is a blog post by
@bufrasch about the 3rd@CoreRuleSet / # ModSecurity Meetup in Bern. Contains new dates for upcoming meetups in 2020. Next one : Feb 26 https://www.puzzle.ch/de/blog/articles/2019/11/06/remote-prasentation-crs-docker-workshop-und-zukunftsplane-am-3-crs-modsecurity-meetup-bern …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Core Rule Set proslijedio/la je Tweet
Had a blast presenting the
#OWASP#ModSecurity@CoreRuleSet together with Chaim Sanders at#AllDayDevOps. Thank you
Register here to watch it: https://www.alldaydevops.com//REGISTER .pic.twitter.com/QVT9NGNIDq
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Our very
@ChrFolini is making an appearance at@AppSecCali with a classy talk on our@CoreRuleSet project in High Security Setups.#CRS3https://twitter.com/ChrFolini/status/1190176147579047937 …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Core Rule Set proslijedio/la je Tweet
Practical OWASP CRS In High Security Settings - Christian Folini
@ChrFolini@AppSecEUhttps://youtu.be/ZbTmpJldwPYHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
Čini se da učitavanje traje već neko vrijeme.
Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.

