Protecting web applications

Web application firewall (WAF) features are included in nevisProxy to protect your site against common web application attacks. Application-layer attacks have become the dominant form of hacker incursions, replacing network-based attacks.

An in-depth coverage of web application security is beyond the scope of this document, we recommend reading "Open Web Application Security Project (OWASP)" and "Web Application Security Consortium (WASC)" for covering all aspects of the topic. The rest of this section is in the form of a tutorial.

The recommended examples are usually valid for classic and kubernetes deployments. Just keep in mind that in a kubernetes deployment, each nevisproxy pod runs separately and doesn't interact with the settings in another pod. For example, if you configure in nevisproxy to allow a certain amount of requests (via mod_qos or the QosFilter) during a certain period, then this is valid per each pod separately.