This is the third and final blog post of a three-part series describing the new CRS-upgrading-plugin. In the previous two posts I introduced the new plugin (part one) and covered the technical implementation details (part two).This post walks through a real-world migration at one of our enterprise customers and the experiences gathered during the shift […]
In the first part of this three-part blog post series, I introduced the seamless upgrade process from CRS v3 to CRS v4 and our netnea-crs-upgrading-plugin. In this second part, we’ll dive deep into the technical implementation details of the plugin and examine how it manages the parallel execution of two CRS versions. Prerequisites: Parallel Installation […]
Migrating from CRS v3 to CRS v4 can be intimidating. It’s a complicated task that risks to leave you vulnerable during the transition. But with the help of the new netnea-CRS-Upgrading-Plugin you can keep your guards up during the transition. Introduction Upgrading the OWASP CRS ruleset from version 3 to version 4 is not as […]
It’s with great pleasure that netnea announces Franziska Bühler joining our team. Franziska, also known as Fränzi, brings over 15 years of experience in application security engineering, with certifications in CISSP and CSSP. She has worked on ModSecurity and Apache alongside our very own Christian Folini at Swiss Post and later joined Puzzle as their […]
Introduction In my tutorial’s webserver logfile configuration, there is a position reserved for the country code of an IP address. I have never explained how I get the information into the environment variable that is then used to fill said position. There are several other guides around, but I think it’s time to provide my […]