mod_fortress 1.0 review
Downloadmod_fortress is an application level firewall and intrusion detection system
|
|
mod_fortress is an application level firewall and intrusion detection system. mod_fortress is designed to intercept certain CGI/HTTP attacks by acting as a non-transparent proxy between an Apache server and an HTTP client.
Here are some key features of "mod fortress":
Detects and Logs common known cgi/http security requests and scans
SSL support
Detects all known(and hopefully unknown) Anti-IDS Evasive Scaning methods (Whisker, twwwscan, VoidEye...etc)
"Fortress In the Middle": Ability to act as a non-transparent proxy to modify HTTP return error codes.
Custom logging option via a changeable format string.
Supports Apache 1.3/2.0 (2.0 port by Anton Soudouvstev).
Requirements:
Apache 1.3, 2.x
What's New in This Release:
ported Anton's port to unix
merged 1.3 and 2.0 code to make it compile under unix and win32
fixed a bug in signature reading code. Thank you Sebastian Wolfgarten
mod_fortress 1.0 search tags