[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[WEB SECURITY] Deploying WAFs In Listening-Only Mode - Waste of Money?

From: "B Snake" <bsnak3@xxxxxxxxx>
Subject: [WEB SECURITY] Deploying WAFs In Listening-Only Mode - Waste of Money?
Date: Sat, 12 Jan 2008 10:55:44 -0500

------=_Part_4067_7039027.1200153344098
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: 7bit
Content-Disposition: inline

It seems like 90+% of companies that implement WAFs deploy them in
listening-only mode and don't do any blocking for fear of false positives
cutting off legitimate user activity.

I'm new to WAFs and this may be a stupid question, but what security value
does a WAF add if it's not doing any blocking of malicious activity?

-BSnake

------=_Part_4067_7039027.1200153344098
Content-Type: text/html; charset=ISO-8859-1
Content-Transfer-Encoding: 7bit
Content-Disposition: inline

It seems like 90+% of companies that implement WAFs deploy them in listening-only mode and don&#39;t do any blocking for fear of false positives cutting off legitimate user activity.<br><br>I&#39;m new to WAFs and this may be a stupid question, but what security value does a WAF add if it&#39;s not doing any blocking of malicious activity?
<br><br>-BSnake<br>

------=_Part_4067_7039027.1200153344098--

Follow-Ups:
- Re: [WEB SECURITY] Deploying WAFs In Listening-Only Mode - Waste of Money?
  - From: Ryan Barnett
- Re: [WEB SECURITY] Deploying WAFs In Listening-Only Mode - Waste of Money?
  - From: Andre Gironda
- Re: [WEB SECURITY] Deploying WAFs In Listening-Only Mode - Waste of Money?
  - From: Ivan Ristic

Prev by Date: Re: [WEB SECURITY] rIP BETA - reverse IP tool
Next by Date: Re: [WEB SECURITY] Deploying WAFs In Listening-Only Mode - Waste of Money?
Previous by thread: [WEB SECURITY] Log requests and reply it again automaticall
Next by thread: Re: [WEB SECURITY] Deploying WAFs In Listening-Only Mode - Waste of Money?
Index(es):
- Date
- Thread

Brought to you by http://www.webappsec.org
Search this site