Remo Remo is a Rule Editor for ModSecurity.
Download

Remo Ranking & Summary

Remo Tags

ModSecurity Rule Editor ModSecurity rules webserver security Remo Rule

Remo Description

Remo is a Rule Editor for ModSecurity. Remo is a Rule Editor for ModSecurity.Here are some key features of "Remo":· Ruby on rails application with ajax use· Enter http requests, display them, edit them, delete them, rearrange them· Edit the http headers of the requests· Generate positive modsecurity2 rulesetModSecurity is not a simple toy. It is quite tricky to configure successfully. Many web applications are not very simple either. Bringing them together by writing a ModSecurity ruleset is very difficult. Modsecurity.org advertises a tested core ruleset granting you protection from most known attacks. But this is only a blacklist approach: All known dangerous traffic is filtered out.A network firewall uses a whitelist approach; also called positive security model: Everything is dropped outside of a short and strict rulset. An application firewall should do exactly the same. (See Ivan Ristic's thougts on positive security. Ivan Ristic is the man behind ModSecurity.)But this comes with a catch: Your application does not come with a short and strict ruleset and writing one will be tough. This is the point where remo will come into play. It is meant as a graphical editor for this ruleset, thus helping you to generate a whitelist of valid requests to your application. Ideally you will be able to bundle this ruleset with every release of your online application. We are not there yet. Far from it to be honest. But the development has started and you are welcome to join in.What's New in This Release:· This first beta release brings the ability to import ModSecurity audit-logs and match them against the ruleset in the edit-area of Remo.· This lets you check if the ruleset which you are developing will work with your online application in practice.

Remo Related Software