Comment on Low resource, Performant WAF
thebardingreen@lemmy.starlightkel.xyz 3 weeks ago
If you want to DIY something, I have a bash script that builds OpenResty with NAXSI from source. Most of the web apps I write anymore are actually in Lua, for OpenResty, maybe with an API written in something else. But I also help other members of my team deploy their Node and Python apps and stuff, and I always just park those behind OpenResty with NAXSI, just doing a standard nginx reverse proxy.
AustralianSimon@lemmy.world 3 weeks ago
How easy is it to configure?
My goal is to download some lists from github and generate one big ban list to feed into the WAF but the community lists of Crowdsec might negate the need.
thebardingreen@lemmy.starlightkel.xyz 3 weeks ago
There’s a learning curve, but if you’re familiar with WAF’s it’s not hard.