http://www.cyberciti.biz/faq/rhel-fedora-centos-httpd-mod_security-configuration/ yum install mod_security – i.e. simple instruction how to install mod_security - an open source Web Application Firewall
http://www.cyberciti.biz/faq/rhel-fedora-centos-httpd-mod_security-configuration/ yum install mod_security – i.e. simple instruction how to install mod_security - an open source Web Application Firewall
https://community.openvpn.net/openvpn/wiki/Gigabit_Networks_Linux Notes about OpenVPN performance testing. Results, in short: easy to saturate 100Mbit network on common hardware. Possible to do a near wire-line speed on 1Gbit network (needs recent version of openssl-1.0a, fresh intel CPU that does AES in hardware AES-NI, and “–engine aesni” option passed to OpenVPN. 10Gbit – depends on hardware option, raw software speed is ~ 3.5Gb
http://www.contextis.com/research/blog/reverseproxybypass/ It is possible for an attacker to reach internal resources in a DMZ if RewriteRule or ProxyPassMatch directives are used in mod_proxy config
http://www.contextis.com/research/blog/reverseproxybypass/ It is possible for an attacker to reach internal resources in a DMZ if RewriteRule or ProxyPassMatch directives are used in mod_proxy config
http://vincent.bernat.im/en/blog/2011-ssl-benchmark.html Interesting test results comparing and analyzing SSL performance. Using right combination of software and proper tunning, you can get up to 14000 TPS (re-shake every 80 requests) on HP DL 380 G7, with two Xeon L5630 (running at 2.13GHz for a total of 8 cores), without hyperthreading, using a 2.6.39 kernel (HZ is set to 250) and two Intel 82576 NIC.
http://vincent.bernat.im/en/blog/2011-ssl-benchmark.html Interesting test results comparing and analyzing SSL performance. Using right combination of software and proper tunning, you can get up to 14000 TPS (re-shake every 80 requests) on HP DL 380 G7, with two Xeon L5630 (running at 2.13GHz for a total of 8 cores), without hyperthreading, using a 2.6.39 kernel (HZ is set to 250) and two Intel 82576 NIC.
https://community.openvpn.net/openvpn/wiki/Gigabit_Networks_Linux
http://www.youtube.com/watch?v=Z7Wl2FW2TcA
http://www.youtube.com/watch?v=Z7Wl2FW2TcA MOXIE MARLINSPIKE talk at BlackHat USA 2011 about current problems with SSL and CA sustem, and the feature of SSL w/out CAs.