E. Otsetova-Dudin, I. Kurtev. ModSecurity Rules for Web-Server Protection

Key Words: ModSecurity; HTTP; OWASP; Web Application; Firewall.

Abstract. The security of the information in the contemporary dynamic and information world is by priority importance. Every day the entire world alarms for different in their nature and object hacker’s attacks. The damages of those attacks are as well fiscal and moral. The most popular attacks against the web-applications are those with causing service denial (Denial of Service – DoS), the blocking of the functioning of different sites or entire systems. Protection opportunities of web-servers, functioning in real time of OWASP (Open Web Application Security Project) are presented in that material. The module ModSecurity provides a set of protection rules, based on control of the ingoing and outgoing traffic from the point of view of the server