SafeLine is a self-hosted WAF(Web Application Firewall) / reverse proxy to protect your web apps from attacks and exploits. - chaitin/SafeLine
# Static configuration experimental: plugins: safeline: moduleName: github.com/chaitin/traefik-safeline version: v1.0.0 Here is an example of a file provider dynamic configuration (given here in YAML), where the interesting part is the http.middlewares section: # Dynamic configuration http: router...
Just as a proxy server acts as an intermediary to protect the identity of a client, a WAF operates in similar fashion but acting as an reverse proxy intermediary that protects the web app server from a potentially malicious client.its core capabilities include:Defenses for web attacks Proactive ...
location / { access_by_lua_block { local t1k = require "resty.t1k" local t = { mode = "block", -- block or monitor or off, default off host = "unix:/workdir/snserver.sock", -- required, SafeLine WAF detection service host, unix domain socket, IP, or domain is supported, ...
This is a WAF plugin for Caddy Server using Chaitin SafeLine as backend engine. How to use (waf) { route { waf_chaitin { waf_engine_addr 169.254.0.5:8000 169.254.0.6:8000 169.254.0.7:8000 initial_cap 1 # initial connection of the engine max_idle 16 # max idle connections max_cap 32...
反馈内容 通过waf代理站点后http长链接无法通过配置proxy_buffering off; 关闭缓冲区 站点通过http 长链接实时推送消息,通过waf 代理并在配置文件 proxy_params 中添加如下配置项 proxy_buffering off; 重启容器后,长链接无法实时输出打印内容 直接访问业务接口可以正确实时
反馈内容 测试使用slow header慢速CC攻击,在雷池waf上看不到攻击日志 测试命令 slowhttptest -c 1000 -H -i 1 -r 200 -t GET -u http://www.abcd.com -x 24 -p 30 slow header不属于畸形HTTP协议吗?