Tous les articles
Page 7
-
WAF framework measures WAF effectiveness | Fastly
Équipe de recherche en sécurité Fastly, Simran Khalsa, 1 de plus
Our new WAF efficacy framework provides a standardized way to measure the effectiveness of a WAF’s detection capabilities through continuous verification and validation. Here’s how it works.
EngineeringSécurité -
Log4Shell attacks (CVE-2021-44228) insights | Fastly
Équipe de recherche en sécurité Fastly, Xavier Stevens, 1 de plus
We’re sharing our latest data and new insights into the Log4j/Log4Shell vulnerability (CVE-2021-44228 + CVE-2021-45046) in this post in order to help the engineering community cope with the situation. We also share our guidance around testing your environment against many of the new obfuscation methods that have been seen.
Informations sur le secteurSécurité -
Log4Shell exploit found in Log4j | Fastly
Équipe de recherche en sécurité Fastly, Xavier Stevens, 1 de plus
CVE-2021-44228 is a Remote Code Execution vulnerability in the Apache Log4j library being actively exploited. We provide our observations into the exploit and a summary of its impact.
SécuritéEngineering -
30 Years of Web: Building for Tomorrow
Lee Chen
The web’s infrastructure — and the applications we build on it — must constantly evolve to meet the ever-transforming expectations of modern and future end users. We’ve gathered five lessons today’s builders can use to drive the next three decades of the web.
Informations sur le secteur2 de plus -
Grinch bots penalized w/ enriched security data & our edge cloud platform | Fastly
Brooks Cunningham
In this post, we’ll show how you can use information from an origin response to add an abuse IP address to our penalty box. We've been touting the promise of security at the edge, and this is just one example of what it can do.
Sécurité2 de plus -
Lies, stats, debunking Cloudflare | Fastly
Andrew Betts, Laura Thomson, 1 de plus
A couple of weeks ago Cloudflare, one of our competitors, claimed that their edge compute platform is roughly three times as fast as Compute@Edge. The false claim is a great example of how statistics can be used to mislead.
Informations sur le secteurCompute -
Cyber Five 2021: new normal or back to before times?
David Belson
We analyzed traffic from Thanksgiving Thursday to Cyber Monday in order to understand the traffic, buying, and security trends of ecommerce's big week.
Informations sur le secteur -
30 Years of Web: Securing Tomorrow
Mike Johnson
To create more secure and resilient web experiences, we must design, build, and execute applications with security top of mind, and consider how the lessons of the past 30 years inform how we think about the future of security.
Informations sur le secteurSécurité -
Modern CDN for Digital Publishing
John Agger
The key to customer retention is serving the most up-to-date content instantly, personalizing that content for readers, and ensuring online experiences are responsive, safe, and secure. Here are three ways a modern content delivery network, or CDN, can help you do just that.
PerformancesStreaming -
30 Years of Web: Future-Ready Apps
Jana Iyengar
Many websites today are really applications, and we should be building them as such. To do that, we need application architectures and networks that are capable of supporting fast, secure, and scalable user experiences. We must embrace a more dynamic mindset in how we approach web development and consider the tools we need to get there.
Informations sur le secteur3 de plus -
30 Years of Web: Future Demands
Davin Camara
As we look back to celebrate the 30th anniversary of the website, it’s also worth thinking about the next 30 years. There are a couple of areas where we — as engineers, developers, and builders in general — can champion innovation, mainly around architecture and security.
Informations sur le secteur5 de plus -
Company culture in a hybrid work environment
Simon Wistow
In this video from Web Summit 2021, we discuss how you build and ensure your company culture when you have some team members in person and some at home.
Culture -
Subresource monitoring with Compute
Équipe de recherche en sécurité Fastly
Compute, our serverless compute environment, can be used to solve headaches dealing with attackers looking to modify and manipulate resources. In this post, we tell you how.
SécuritéCompute -
You can now test Compute code in Fastly Fiddle
Andrew Betts
Fastly customers have been using our Fiddle tool for years to try out ideas for edge logic in VCL. With the advent of Compute last year, we made our edge compute network accessible to any language that compiles to WebAssembly, and now you can write Compute code in Fiddle too.
Engineering3 de plus -
Get started with Fastly logging and Compute@Edge | Fastly
Alex Kesler
In this tutorial, we’ll walk you through the basic steps of outputting messages to STDIO and tailing that output with the Fastly CLI as well as configuring a log streaming endpoint, emitting logs in your application, and confirming the delivery of those logs to your target logging destination.
Engineering2 de plus -
Compute is now available to all with a free trial
Lizzy Brophy
Compute is now available for everyone to use, and we’re throwing in free credits so you can explore the platform with no strings attached. Read on for a crash course in how to stand up an experiment and experience the flexibility, security, and power of Compute for yourself.
Compute -
Get $100k/month in edge compute credits for nine months
Matt Oden
For a limited time, you can get $100k/month in edge compute credits for nine months, as an incentive to start building with Compute now.
WebAssemblyCompute -
Compute@Edge named leader in edge dev report | Fastly
Christine Cole
Known for having an execution speed 100 times faster than other solutions and unmatched isolation technology security, Compute was named a Leader in the Forrester New Wave: Edge Development Platforms report.
ProduitCompute -
Enabling global customer compliance
Neal Hannan
We updated our data processing terms to help you stay compliant — and continue to put your data in your hands — in response to the European Union’s most recent standard contractual clauses for data transfers between countries.
Actualités de la société -
Preventing SSRF: Apache CVE-2021-40438 | Fastly
Équipe de recherche en sécurité Fastly
Our Security Research Team provides guidance on how to address CVE-2021-40438, a vulnerability in Apache HTTP Server version 2.4.48 and earlier, by patching impacted version(s) and enabling a new templated rule to prevent exploitation.
EngineeringSécurité