What should we do when web protection mechanisms fail?

March 24, 2009

Upon reading the news we have found a problem in the modsecurity that can be exploited by means of a simple web requirement. Many companies generally make use of tools like the Web Application Firewall (WAF) to protect their web applications against attacks but the question is: who’s going to protect the protection itself? We […]