This is the third and final blog post of a three-part series describing the new CRS-upgrading-plugin. In the previous two posts I introduced the new plugin (part one) and covered the technical implementation details (part two).This post walks through a real-world migration at one of our enterprise customers and the experiences gathered during the shift […]
In the first part of this three-part blog post series, I introduced the seamless upgrade process from CRS v3 to CRS v4 and our netnea-crs-upgrading-plugin. In this second part, we’ll dive deep into the technical implementation details of the plugin and examine how it manages the parallel execution of two CRS versions. Prerequisites: Parallel Installation […]
Migrating from CRS v3 to CRS v4 can be intimidating. It’s a complicated task that risks to leave you vulnerable during the transition. But with the help of the new netnea-CRS-Upgrading-Plugin you can keep your guards up during the transition. Introduction Upgrading the OWASP CRS ruleset from version 3 to version 4 is not as […]
Introduction In my tutorial’s webserver logfile configuration, there is a position reserved for the country code of an IP address. I have never explained how I get the information into the environment variable that is then used to fill said position. There are several other guides around, but I think it’s time to provide my […]
Running ModSecurity CRS for the first time on an existing service is like a jump into murky water.
With the sampling mode you can run CRS on a limited percentage of the traffic, which reduces the risk a big deal.