Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Add scope_down_statement Support #87

Merged
merged 5 commits into from
Jun 26, 2024
Merged

Add scope_down_statement Support #87

merged 5 commits into from
Jun 26, 2024

Conversation

RoseSecurity
Copy link
Contributor

what

AWS highly recommends safeguarding against HTTP request floods; they advise implementing two rate limiting rules for web traffic. The initial rule employs AWS WAF's rate-based rules to automatically block IP addresses of malicious actors if the number of requests in a 5-minute sliding window surpasses a predefined threshold. The second rule focuses on a more detailed approach, allowing for targeted blocking. This is achieved by using scope_down_statements to refine the criteria for blocking, enhancing the precision of the defense mechanism.

why

  • Adds scope_down_statements with byte matching support

references

@RoseSecurity RoseSecurity requested review from a team as code owners June 26, 2024 03:46
@RoseSecurity
Copy link
Contributor Author

RoseSecurity commented Jun 26, 2024

These changes were released in v1.7.0.

@RoseSecurity RoseSecurity changed the title Add scope down statement support Add scope_down_statement Support Jun 26, 2024
@mergify mergify bot added the triage Needs triage label Jun 26, 2024
Copy link

@arcaven arcaven left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

9 deep!

rules.tf Outdated Show resolved Hide resolved
Copy link
Member

@aknysh aknysh left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

@RoseSecurity thank you, looks good.

Please address the comment, and please run

make init
make readme

RoseSecurity and others added 2 commits June 26, 2024 14:41
Co-authored-by: Andriy Knysh <aknysh@users.noreply.github.com>
@aknysh
Copy link
Member

aknysh commented Jun 26, 2024

/terratest

@aknysh aknysh added minor New features that do not break anything and removed triage Needs triage labels Jun 26, 2024
Copy link
Member

@aknysh aknysh left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

thanks @RoseSecurity

@aknysh aknysh merged commit f4f8031 into cloudposse:main Jun 26, 2024
32 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
minor New features that do not break anything
Projects
None yet
Development

Successfully merging this pull request may close these issues.

3 participants