Tag Archives: dos

Apache cdorked backdoor detection

Apache Cdorked.A backdoor This is a pretty recent attack, using Cpanel to change the Apache httpd binary by a compromised one which embeds a backdoor. A few articles with more details are available here:   * http://www.welivesecurity.com/2013/04/26/linuxcdorked-new-apache-backdoor-in-the-wild-serves-blackhole/   * http://blog.sucuri.net/2013/04/apache-binary-backdoors-on-cpanel-based-servers.html It seems … Continue reading

Posted in security | Tagged , , | Leave a comment

wordpress CMS brute force protection with HAProxy

Brute force attacks Brute force is a pretty simple type of attacks: it consists of massively send requests to a URL with different parameter each time. The main purpose is to try to find the right parameter combination. Usually, brute … Continue reading

Posted in HAProxy, security | Tagged , , , , | 4 Comments

Microsoft Remote Desktop Services (RDS) Load-Balancing and protection

RDS, RDP, TSE, remoteapp Whatever you call it, it’s the remote desktop protocol from Microsoft, which has been renamed during the product life. Basically, it allows users to get connected on remote server and run an application or a full … Continue reading

Posted in Aloha, architecture, security, Virtual Desktop Infrastructure | Tagged , , , | 4 Comments

high performance WAF platform with Naxsi and HAProxy

Synopsis I’ve already described WAF in a previous article, where I spoke about WAF scalability with apache and modsecurity. One of the main issue with Apache and modsecurity is the performance. To address this issue, an alternative exists: naxsi, a … Continue reading

Posted in Aloha, architecture, HAProxy, security | Tagged , , , , , , , , , , , , | 3 Comments

HTTP request flood mitigation

In a recent article, we saw how we can use a load-balancer as a first row of defense against DDOS. The purpose of the present article to provide a configuration to protect your applications against HTTP request flood. The configuration … Continue reading

Posted in Aloha, HAProxy, layer7, security | Tagged , , , | 6 Comments

Use a load-balancer as a first row of defense against DDOS

We’ve seen recently more and more DOS and DDOS attacks. Some of them were very big, requiring thousands of computers… But in most cases, this kind of attacks are made by a few computers aiming to make a service or … Continue reading

Posted in Aloha, HAProxy, security | Tagged , , | 34 Comments

Web traffic limitation

Synopsis For different reason, we may want to limit the number of connections or the number of requests we allow to a web farm. In example: give more capacity to authenticated users compared to anonymous one limit web farm users … Continue reading

Posted in Aloha, HAProxy, optimization | Tagged , , , , | 2 Comments