The Cloudflare Web Application Firewall (WAF) blocks more than 57 billion cyber threats per day. Michael Tremante, product manager at Cloudflare, explains why the new product required replacing the code base of the existing WAF, one of the most used products at Cloudflare: Furthermore, they are changing the old rule syntax that was a superset of the ModSecurity syntax. Cloudflare is now moving away from the previous engine written in LuaJIT by John Graham-Cumming and implemented as an NGINX module. The new implementation was designed to offer easier rule browsing, one click deploy and configuration, updated rulesets based on the latest version of the OWASP Core Ruleset, and the ability to deploy the same configuration across the entire account. The latest engine is written in Rust, provides better performances and integrates with other Cloudflare products. Cloudflare has recently introduced a new Web Application Firewall.
0 kommentar(er)
