Prevent web application hacking with Packt's New ModSecurity Book

Dec. 14, 2009 - PRLog -- Packt is pleased to announce ModSecurity 2.5, a new book that system administrators can use to secure their system by knowing exactly how a hacker would break into it. Written by Magnus Mischel, this book covers in depth details about Mod Security rule language elements such as variables, actions, and request phases. This easy to use guide teaches ModSecurity right from the beginning and also covers the common attacks in use on the web, and ways to find the geographical location of an attacker.

ModSecurity is a module running on Apache and based on a Linux server that will help users overcome the security threats prevalent in the online world. It is a web application firewall that can work either as an embedded or as a reverse proxy. It provides protection from a range of attacks against web applications and allows for HTTP traffic monitoring, logging and real-time analysis.

ModSecurity 2.5 uses real-world examples of attacks to help users secure their web applications and server. The users will also learn about SQL injection, cross-site scripting attacks, cross-site request forgeries and null byte attacks to understand how attackers operate. Using clear step-by-step instructions, this book starts by teaching them how to install and set up ModSecurity and then dives into the rule language with examples.
With this book, users will learn to compile ModSecurity from source and install it on a Linux system. It will also help them discover the real IP address of an attacker using ModSecurity, even if the attacker is behind a proxy server. In addition to protection against newly discovered vulnerabilities, they will also be able to prevent HTTP fingerprinting by flying their Apache server under a false flag.

Packed with many real-life examples for better understanding, this book is perfect for system administrators to stop hackers before they get a chance to break into web applications and steal confidential data. The book is out now and available from Packt. To read more about it, please visit: http://www.packtpub.com/modsecurity-2-5/book