Some time ago Packt Publishing published a book about mod_security. Since I use mod_security very actively to protect servers, I decided to get this book and write a review.

Here it is.

Let's try some stupid HTTP requests to my server For example, this...

After yesterday's incident with a stupid bot, I thought I might give you more insight on what happens on the Net...

Today I saw a number of requests from various Microsoft Addresses with msnbot/20b as user agent.

This msnbot behaves wrong. It requests sites that neither existed, nor exist, nor will ever exist on this server. Here is an example (caught by mod_security2)...

One grave security–related mistake that I saw twice this month was related to passwords.

You are aware of the TYPO3 vulnerability that allows attackers to read localconf.php file. Lots of sites were attacked and hackers got passwords to some of them.

There is one thing that could make matters much worse and let hackers to exercise a full control over your web site. This thing is: using the same user name and password pair for both MySQL database and ssh login.

It may sound incredible but it is truth. Some people (and even some hosting...

My DNS in under attack for two weeks already. Details inside.

After the recent security issues with TYPO3 I keep an especially close watch on my servers' mod_security logs. jumpurl atacks come from many IP addresses and they are already bore me. However today I saw something new and interesting...