Follow

Does anyone know of an open source WAF appliance that is idiot friendly and potentially with a graphical interface?

I have tried ModSecurity / NAXSI in the past, but tbh I always found they needed a crap load of maintenance all the time.

@fox UAF isn't a WAF. It's just an interface for iptables, ie it functions on layer 3 and layer 4. I've never really had a problem with iptables.

I'm looking for a WAF (ie something that functions on layer 7). It serves a very different function.

@mhamzahkhan @fox

in the past I was using snort together with a script which was blocking the source IP for a while.

I also tried to write one which is capable to learn but It has no UI and I don’t have enough testers to say if it is good. It works for me.

https://git.keinpfusch.net/loweel...

@loweel I was using snort for a while, and I'm thinking of setting it up again along with modsecurity, but honestly I was hoping for something that's as little maintenance as possible as in the past whenever I've used snort or modsecurity, it's ended up requiring constant maintenance. It got a bit frustrating as It got in the way of all other tasks.

@mhamzahkhan

have you tried pulledpork with snort? It automates updates pretty well. I was using with FreeBSD, and I never had to spend so much time…

@loweel Yep I have. I think I'll just have to give it another shot, it's been a few years since I used it.

Sign in to participate in the conversation
Mastodon@intahnet.co.uk

The social network of the future: No ads, no corporate surveillance, ethical design, and decentralization! Own your data with Mastodon!