I have some clients that has been hit twice with the recent SQL injections that
seem to be ramping up.
See:
http://www.scmagazineus.com/new-mass-sql-injection-attack-could-be-forming/article/218069/
http://news.hitb.org/content/new-mass-sql-injection-attack-could-be-forming
At our datacenter
As far as i know for application level attacks like this you need
something like snort to detect them.
I believe this is supported as a package. I havent used it under pfsense
though.
http://doc.pfsense.org/index.php/Setup_Snort_Package seems to indicate
it will block hosts based on snort rules.
that at the firewall level
would be to block access to the application, but obviously you can't do that if
it's supposed to be a public application.
Date: Tue, 6 Dec 2011 23:36:53 +
From: vi...@unsane.co.uk
To: list@lists.pfsense.org
Subject: Re: [pfSense] Any suggestions on how filter in pfSense
Hi,
Op 7 dec 2011, om 00:26 heeft Chuck Mariotti het volgende geschreven:
At our datacenter managed to not get hit. However, I guess I would like to
ask for suggestions on how to stop this type of attack at the pfSense
firewall and what/how to implement something that would allow us to
) arise in the future.
Regards,
Chuck
From: list-boun...@lists.pfsense.org [mailto:list-boun...@lists.pfsense.org] On
Behalf Of Seth Mos
Sent: December-07-11 1:42 AM
To: pfSense support and discussion
Subject: Re: [pfSense] Any suggestions on how filter in pfSense for SQL
Injections?
Hi,
Op 7 dec