New on LowEndTalk? Please Register and read our Community Rules.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
Comments
Most people use OWASP or Atomic ModSecurity Rules (but free version of Atomic rule set isn't completely up to date if I remember correct).
Not from the top of my head, I am not on my main box, but you could use the WAF by Comodo and "borrow" their rules, or just use their service:
https://waf.comodo.com/
I used to use the Atomic delayed rules, but they don't offer them for free anymore - and are quite out of date now.
I found the OWASP rules, just wondering what else others used / recommended.
Keep the suggestions coming
One of my clients pays for the spiderlabs commercial ruleset. Daily updates, fast support, rsyncable.