Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add scope_down_statement Support #87

Merged
merged 5 commits into from
Jun 26, 2024
Merged

Add scope_down_statement Support #87

merged 5 commits into from
Jun 26, 2024

Conversation

RoseSecurity
Copy link
Member

what

AWS highly recommends safeguarding against HTTP request floods; they advise implementing two rate limiting rules for web traffic. The initial rule employs AWS WAF's rate-based rules to automatically block IP addresses of malicious actors if the number of requests in a 5-minute sliding window surpasses a predefined threshold. The second rule focuses on a more detailed approach, allowing for targeted blocking. This is achieved by using scope_down_statements to refine the criteria for blocking, enhancing the precision of the defense mechanism.

why

  • Adds scope_down_statements with byte matching support

references

@RoseSecurity RoseSecurity requested review from a team as code owners June 26, 2024 03:46
@RoseSecurity
Copy link
Member Author

RoseSecurity commented Jun 26, 2024
edited by github-actions bot
Loading

These changes were released in v1.7.0.

@RoseSecurity RoseSecurity changed the title Add scope down statement support Add scope_down_statement Support Jun 26, 2024
@mergify mergify bot added the triage Needs triage label Jun 26, 2024
arcaven
arcaven approved these changes Jun 26, 2024
View reviewed changes
Copy link

@arcaven arcaven left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

9 deep!

aknysh
aknysh reviewed Jun 26, 2024
View reviewed changes
rules.tf Outdated Show resolved Hide resolved
aknysh
aknysh reviewed Jun 26, 2024
View reviewed changes
Copy link
Member

@aknysh aknysh left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

@RoseSecurity thank you, looks good.

Please address the comment, and please run

make init
make readme

RoseSecurity and others added 2 commits June 26, 2024 14:41
@RoseSecurity @aknysh
update text transformation
e245ae1 
Co-authored-by: Andriy Knysh <aknysh@users.noreply.github.com>
@RoseSecurity
update docs
4a6e39f
@aknysh
Copy link
Member

aknysh commented Jun 26, 2024

/terratest

@aknysh aknysh added minor New features that do not break anything and removed triage Needs triage labels Jun 26, 2024
aknysh
aknysh approved these changes Jun 26, 2024
View reviewed changes
Copy link
Member

@aknysh aknysh left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

thanks @RoseSecurity

@aknysh aknysh merged commit f4f8031 into cloudposse:main Jun 26, 2024
32 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@aknysh aknysh aknysh approved these changes

@arcaven arcaven arcaven approved these changes

@johncblandii johncblandii Awaiting requested review from johncblandii johncblandii is a code owner automatically assigned from cloudposse/contributors

@jamengual jamengual Awaiting requested review from jamengual jamengual is a code owner automatically assigned from cloudposse/contributors

Assignees
No one assigned
Labels
minor New features that do not break anything
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@RoseSecurity @aknysh @arcaven