WebShield introduction for server administrators
WebShield is a component of the Imunify360 security solution. Its primary purpose is to handle HTTP traffic and prevent HTTP attacks.
As a security solution, WebShield is meant to:
- Block blacklisted traffic
- Redirect graylisted traffic to CAPTCHA until the CAPTCHA is passed
- Act as a proxy service, redirecting remaining traffic to backends
It consists of four services:
- WebShield itself
- Shared memory daemon
- SSL-caching daemon
- Sentrylogs daemon
Shared memory is the component of WebShield that makes it easier to deal with certain aspects of Nginx configuration without reloading. It does this by modifying its shared memory.
SSL-caching daemon watches changes to host SSL certificate sets (for known hosting panels only: cPanel, Plesk, DirectAdmin) and updates the WebShield SSL cache when a certificate is added, updated or removed.
Sentrylogs daemon watches WebShield log files to detect errors.
The configuration of WebShield is done by an agent, and direct editing of WebShield configuration files is generally not recommended. This is mainly because after the next reconfiguration all custom changes would be lost. However, there are some items a host administrator may want to set.
WebShield: Blocks blacklisted traffic & prevents HTTP attacks
WebShield is a component of the Imunify360 security solution. Its primary purpose is to handle HTTP traffic and prevent HTTP attacks.
As a security solution, WebShield is meant to:
- Block blacklisted traffic
- Redirect graylisted traffic to CAPTCHA until the CAPTCHA is passed
- Act as a proxy service, redirecting remaining traffic to backends
prev
.png?width=115&height=115&name=pci-dss%20(1).png "pci-dss")
