NGINX.COM
webinar

ModSecurity and NGINX: Tuning the OWASP Core Rule Set

In this webinar we discuss how to install the OWASP Core Rule Set (CRS) with NGINX and ModSecurity, as well as how to tune it. The CRS protects against many types of attack, including SQL Injection (SQLi), Local File Inclusion (LFI), and Remote Code Execution (RCE).

webinar

ModSecurity and NGINX: Tuning the OWASP Core Rule Set

In this webinar we discuss how to install the OWASP Core Rule Set (CRS) with NGINX and ModSecurity, as well as how to tune it. The CRS protects against many types of attack, including SQL Injection (SQLi), Local File Inclusion (LFI), and Remote Code Execution (RCE).

Watch on Demand

Recorded on September 2018

Join this webinar to learn:

  • icon

    How to install the OWASP Core Rule Set (CRS) with ModSecurity

  • icon

    About the types of attacks the CRS blocks, such SQLi, RFI, and LFI

  • icon

    How to tune the CRS to minimize false positives

  • icon

    What it looks like when ModSecurity blocks an attack (in a live demo), and how to interpret the audit log

About the webinar

ModSecurity is the world’s most popular open source web application firewall (WAF), used by over a million websites today. ModSecurity is the WAF engine and works in conjunction with rules that define malicious behavior, most typically the OWASP Core Rule Set (CRS). The CRS provides protections against SQL Injection (SQLi), Local File Inclusion (LFI), Remote Code Execution (RCE), and many other types of attack. It is community-maintained and has been battle-tested for over 12 years.

In this webinar we will discuss how to install the CRS with NGINX and ModSecurity, as well as how to tune it. Although the CRS’s default settings minimize false positives, the fear of blocking legitimate users scares many admins away from WAFs. We will cover techniques to further tune the CRS to avoid false positives in several types of environments.

Speakers

Faisal Memon

Product Marketing NGINX, Inc.
  • linkedin
  • twitter

Faisal Memon

Product Marketing NGINX, Inc.
Watch on Demand

TRY NGINX PLUS!

Download a 30 day free trial and see what you've been missing.

* = Required

We'll take care of your data.

X

Got a question for the NGINX team?

< back

* = Required

X