Re: [mod-security-users] ipMatchFromFile vs RBL performance
Brought to you by:
victorhora,
zimmerletw
Menu
▾
▴
Re: [mod-security-users] ipMatchFromFile vs RBL performance
|
From: Christian F. <chr...@ti...> - 2014-11-17 15:42:15
|
Hi there, Caching _is_ hairy. The inherent complexity should not be hidden inside ModSecurity embedded inside Apache/nginx/IIS. I doubt that code can be done in the necessary quality. That is not to say postfix does it wrong. But postfix is not embedded software the way ModSec is and it has a bigger userbase and a bigger developer community. Ahoj, Christian Reindl Harald <h.r...@th...> , 11/17/2014 4:33 PM: Am 17.11.2014 um 16:23 schrieb Ryan Barnett: > You will most likely need to do some testing with your specific setup to > find out what the best option is for performance. Have you reviewing > this past blog post? > http://blog.spiderlabs.com/2011/07/advanced-topic-of-the-week-updated-real-time-blacklist-lookups.html > The most important considerations for @rbl usage are to try and "cache" > results. This can me saving @rbl result status within local ModSecurity > persistent IP storage or also using @rbldnsd to locally cache the DNS > response but the syntax / complexity for caching is horrible - mod_security should do that by default as postfix does with postscreen, even in case of a local rbldnsd on a high traffic site you want to avoid the overhead (other than on a mailserver a client does much more than one request for a website) postscreen_dnsbl_ttl = 5m http://www.postfix.org/postconf.5.html#postscreen_dnsbl_ttl ------------------------------------------------------------------------------ Download BIRT iHub F-Type - The Free Enterprise-Grade BIRT Server from Actuate! Instantly Supercharge Your Business Reports and Dashboards with Interactivity, Sharing, Native Excel Exports, App Integration & more Get technology previously reserved for billion-dollar corporations, FREE http://pubads.g.doubleclick.net/gampad/clk?id=157005751&iu=/4140/ostg.clktrk _______________________________________________ mod-security-users mailing list mod...@li... https://lists.sourceforge.net/lists/listinfo/mod-security-users Commercial ModSecurity Rules and Support from Trustwave's SpiderLabs: http://www.modsecurity.org/projects/commercial/rules/ http://www.modsecurity.org/projects/commercial/support/ |