Hi Felipe:
Can you or someone else tell me if ModSecurity will work in a stock Websphere Application Server environment (that does not have Apache)?  I could not find anything saying that it can.  If it can, what are some of the implementation details?  I'm using WebCastellum with some success but would prefer to use a framework like ModSecurity that is maintained.

Thanks,
Eric


On Fri, Feb 7, 2014 at 6:41 AM, Felipe Costa <FCosta@trustwave.com> wrote:
Hi,

In case you are interest to test, the code is hosted under our git repository at branch: "modsec_status". 

There are two main ways to download the code:

a) Using GitHub ui.

GitHub allows the independent visualization of branches. By visiting the url: https://github.com/SpiderLabs/ModSecurity/tree/modsec_status,
you will be able to navigate under the code that belongs to the "modsec_status" branch. You can use the button: "Download ZIP" (on the right menu) to download the code.

b) Using git directly on the console:

Another option to fetch the code is to download it directly from our git repository, as following:

$ cd ModSecurity
$ git checkout origin/modsec_status -b modsec_status


Br.,
Felipe "Zimmerle" Costa
Security Researcher, SpiderLabs

Trustwave | SMART SECURITY ON DEMAND


On Feb 6, 2014, at 9:03 PM, Ryan Barnett <RBarnett@trustwave.com> wrote:

Anyone interested in beta testing?

Ryan Barnett
Lead Security Researcher, SpiderLabs

 

Trustwave | SMART SECURITY ON DEMAND

On Jan 29, 2014, at 11:06 AM, "Felipe Costa" <FCosta@trustwave.com> wrote:

Hi there,

Ryan and I have been busy for a while trying to figure out a way to get some statistics on ModSecurity usage, to allow us to have a better bug prioritization, and understand how frequently our users are updating ModSecurity, etc… 

We've made a blog post yesterday, which introduces the idea and code, it is available at:


As said in the blog post, the code is not merged yet, it still in a separated branch. Your opinion and suggestion are very important, so please test and comment, suggestions and feedback are very welcomed.

Br.,
Felipe "Zimmerle" Costa
Security Researcher, SpiderLabs
 
Trustwave | SMART SECURITY ON DEMAND




This transmission may contain information that is privileged, confidential, and/or exempt from disclosure under applicable law. If you are not the intended recipient, you are hereby notified that any disclosure, copying, distribution, or use of the information contained herein (including any reliance thereon) is strictly prohibited. If you received this transmission in error, please immediately contact the sender and destroy the material in its entirety, whether in electronic or hard copy format.
------------------------------------------------------------------------------
WatchGuard Dimension instantly turns raw network data into actionable
security intelligence. It gives you real-time visual feedback on key
security issues and trends.  Skip the complicated setup - simply import
a virtual appliance and go from zero to informed in seconds.
http://pubads.g.doubleclick.net/gampad/clk?id=123612991&iu=/4140/ostg.clktrk
_______________________________________________
mod-security-users mailing list
mod-security-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/mod-security-users
Commercial ModSecurity Rules and Support from Trustwave's SpiderLabs:
http://www.modsecurity.org/projects/commercial/rules/
http://www.modsecurity.org/projects/commercial/support/



This transmission may contain information that is privileged, confidential, and/or exempt from disclosure under applicable law. If you are not the intended recipient, you are hereby notified that any disclosure, copying, distribution, or use of the information contained herein (including any reliance thereon) is strictly prohibited. If you received this transmission in error, please immediately contact the sender and destroy the material in its entirety, whether in electronic or hard copy format.
------------------------------------------------------------------------------
Managing the Performance of Cloud-Based Applications
Take advantage of what the Cloud has to offer - Avoid Common Pitfalls.
Read the Whitepaper.
http://pubads.g.doubleclick.net/gampad/clk?id=121051231&iu=/4140/ostg.clktrk_______________________________________________
mod-security-users mailing list
mod-security-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/mod-security-users
Commercial ModSecurity Rules and Support from Trustwave's SpiderLabs:
http://www.modsecurity.org/projects/commercial/rules/
http://www.modsecurity.org/projects/commercial/support/




This transmission may contain information that is privileged, confidential, and/or exempt from disclosure under applicable law. If you are not the intended recipient, you are hereby notified that any disclosure, copying, distribution, or use of the information contained herein (including any reliance thereon) is strictly prohibited. If you received this transmission in error, please immediately contact the sender and destroy the material in its entirety, whether in electronic or hard copy format.

------------------------------------------------------------------------------
Managing the Performance of Cloud-Based Applications
Take advantage of what the Cloud has to offer - Avoid Common Pitfalls.
Read the Whitepaper.
http://pubads.g.doubleclick.net/gampad/clk?id=121051231&iu=/4140/ostg.clktrk
_______________________________________________
mod-security-developers mailing list
mod-security-developers@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/mod-security-developers
ModSecurity Services from Trustwave's SpiderLabs:
https://www.trustwave.com/spiderLabs.php



--


Eric Anderson |Customer Facing Systems| RR DONNELLEY

4101 Winfield Road | Warrenville, IL 60555

TEL: 630.322.7176

EML: eric.l.anderson@rrd.com

WEB: http://www.rrdonnelley.com

_____________________________________________________________________________________________
The information contained in this message is proprietary and/or confidential. If you are not the intended recipient, please: (i) delete the message and all copies; (ii) do not disclose, distribute or use the message in any manner; and (iii) notify the sender immediately. In addition, please be aware that any message addressed to our domain is subject to archiving and review by persons other than the intended recipient. Thank you.