From owner-freebsd-www@FreeBSD.ORG Tue Mar 20 16:40:05 2007 Return-Path: X-Original-To: freebsd-www@hub.freebsd.org Delivered-To: freebsd-www@hub.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52]) by hub.freebsd.org (Postfix) with ESMTP id 8838616A402 for ; Tue, 20 Mar 2007 16:40:05 +0000 (UTC) (envelope-from gnats@FreeBSD.org) Received: from freefall.freebsd.org (freefall.freebsd.org [69.147.83.40]) by mx1.freebsd.org (Postfix) with ESMTP id 517AE13C45E for ; Tue, 20 Mar 2007 16:40:05 +0000 (UTC) (envelope-from gnats@FreeBSD.org) Received: from freefall.freebsd.org (gnats@localhost [127.0.0.1]) by freefall.freebsd.org (8.13.4/8.13.4) with ESMTP id l2KGe5k7019997 for ; Tue, 20 Mar 2007 16:40:05 GMT (envelope-from gnats@freefall.freebsd.org) Received: (from gnats@localhost) by freefall.freebsd.org (8.13.4/8.13.4/Submit) id l2KGe54H019974; Tue, 20 Mar 2007 16:40:05 GMT (envelope-from gnats) Resent-Date: Tue, 20 Mar 2007 16:40:05 GMT Resent-Message-Id: <200703201640.l2KGe54H019974@freefall.freebsd.org> Resent-From: FreeBSD-gnats-submit@FreeBSD.org (GNATS Filer) Resent-To: freebsd-www@FreeBSD.org Resent-Reply-To: FreeBSD-gnats-submit@FreeBSD.org, Richard Touret Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52]) by hub.freebsd.org (Postfix) with ESMTP id 36C2516A400 for ; Tue, 20 Mar 2007 16:39:08 +0000 (UTC) (envelope-from nobody@FreeBSD.org) Received: from www.freebsd.org (www.freebsd.org [69.147.83.33]) by mx1.freebsd.org (Postfix) with ESMTP id 158A813C480 for ; Tue, 20 Mar 2007 16:39:07 +0000 (UTC) (envelope-from nobody@FreeBSD.org) Received: from www.freebsd.org (localhost [127.0.0.1]) by www.freebsd.org (8.13.1/8.13.1) with ESMTP id l2KGd6f2050434 for ; Tue, 20 Mar 2007 16:39:06 GMT (envelope-from nobody@www.freebsd.org) Received: (from nobody@localhost) by www.freebsd.org (8.13.1/8.13.1/Submit) id l2KGY5DP040780; Tue, 20 Mar 2007 16:34:05 GMT (envelope-from nobody) Message-Id: <200703201634.l2KGY5DP040780@www.freebsd.org> Date: Tue, 20 Mar 2007 16:34:05 GMT From: Richard Touret To: freebsd-gnats-submit@FreeBSD.org X-Send-Pr-Version: www-3.0 Cc: Subject: www/110588: BinarySEC secures web applications and sites on FreeBSD X-BeenThere: freebsd-www@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: FreeBSD Project Webmasters List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 20 Mar 2007 16:40:05 -0000 >Number: 110588 >Category: www >Synopsis: BinarySEC secures web applications and sites on FreeBSD >Confidential: no >Severity: non-critical >Priority: low >Responsible: freebsd-www >State: open >Quarter: >Keywords: >Date-Required: >Class: sw-bug >Submitter-Id: current-users >Arrival-Date: Tue Mar 20 16:40:04 GMT 2007 >Closed-Date: >Last-Modified: >Originator: Richard Touret >Release: 5.0 >Organization: BinarySEC >Environment: >Description: BinarySEC is an intelligent web application firewall. It runs on FreeBSD Apache as a module either on x86_32bit or x86_64bit architectures. Its artificial intelligence engine learns normal traffic received on a website or any web application (provided it uses Apache) and is then able to stop suspicious HTTP requests. It has two modes : alert (suspicious traffic is just reported, not stopped) and blocking mode. The webmaster (or the admin) has the ability to make the AI engine learn normal traffic so that these requests' profiles generate no more false positives. After a few days, no more false alerts will appear, only suspicious traffic will have been blocked. BinarySEC is a relevant tool to harden a web application. A free trial is available on our website. It installs in a few minutes : http://www.binarysec.com/page-eng-freetrial.html? >How-To-Repeat: >Fix: >Release-Note: >Audit-Trail: >Unformatted: