headers
Mathew Brown | 6 May 14:28
Favicon

ModSecurity and WAFEC

Hi,
  I was wondering if anyone has applied the WAFEC (Web Application
  Firewall Evaluation Criteria -
  http://www.webappsec.org/projects/wafec/) to ModSecurity and if this
  information is publicly available.  Thanks.
-- 
  Mathew Brown
  mathewbrown <at> fastmail.fm

--

-- 
http://www.fastmail.fm - Email service worth paying for. Try it for free

-------------------------------------------------------------------------
This SF.net email is sponsored by the 2008 JavaOne(SM) Conference 
Don't miss this year's exciting event. There's still time to save $100. 
Use priority code J8TL2D2. 
http://ad.doubleclick.net/clk;198757673;13503038;p?http://java.sun.com/javaone
Permalink | Reply |
headers
Ivan Ristic | 6 May 17:57
Picon

Re: ModSecurity and WAFEC

Not that I know. For your information, once WAFECv2 is complete (it
will be a few more months) we will make the ModSecurity compliance
document publicly available.

On Tue, May 6, 2008 at 1:29 PM, Mathew Brown <mathewbrown <at> fastmail.fm> wrote:
> Hi,
>   I was wondering if anyone has applied the WAFEC (Web Application
>   Firewall Evaluation Criteria -
>   http://www.webappsec.org/projects/wafec/) to ModSecurity and if this
>   information is publicly available.  Thanks.
>  --
>   Mathew Brown
>   mathewbrown <at> fastmail.fm
>
>  --
>  http://www.fastmail.fm - Email service worth paying for. Try it for free
>
>
>  -------------------------------------------------------------------------
>  This SF.net email is sponsored by the 2008 JavaOne(SM) Conference
>  Don't miss this year's exciting event. There's still time to save $100.
>  Use priority code J8TL2D2.
>  http://ad.doubleclick.net/clk;198757673;13503038;p?http://java.sun.com/javaone
>  _______________________________________________
>  mod-security-users mailing list
>  mod-security-users <at> lists.sourceforge.net
>  https://lists.sourceforge.net/lists/listinfo/mod-security-users
>

--

--
(Continue reading)

Permalink | Reply |
headers
Przemyslaw Skowron | 9 May 13:50
Picon

Re: ModSecurity and WAFEC

On Tue, May 6, 2008 at 5:57 PM, Ivan Ristic <ivan.ristic <at> gmail.com> wrote:
> Not that I know. For your information, once WAFECv2 is complete (it
> will be a few more months) we will make the ModSecurity compliance
> document publicly available.

When can I expect the new version WAFEC (v2)? Before September?

I start work on a thesis work, where search the mod_security
compliance with WAFEC.
I would like to resist the latest of these studies document - WAFECv2,
not WAFEC.

Best Regards,
--

-- 
Przemyslaw Skowron, <przemyslaw.skowron {at} gmail.com>

-------------------------------------------------------------------------
This SF.net email is sponsored by the 2008 JavaOne(SM) Conference 
Don't miss this year's exciting event. There's still time to save $100. 
Use priority code J8TL2D2. 
http://ad.doubleclick.net/clk;198757673;13503038;p?http://java.sun.com/javaone
Permalink | Reply |

Gmane