December 2023 - CVE-2023-45539: HAProxy Accepts # as Part of the URI Component Fixed
We have received questions regarding CVE-2023-45539 issued in November 2023. The versions of our products released on Monday, 21 August 2023 to fix...
Articles tagged as
Security
Web App Security vs. API Security: Unified Approaches Reign Supreme
While there are core differences between web apps and APIs, a unified security strategy is crucial. In this blog, we'll discuss why both types of security appear different yet are inherently linked.
Rate limiting based on AWS VPC ID
We show you how to implement rate limiting based on the ID of the Virtual Private Cloud in Amazon Web Services using HAProxy Enterprise.
Scalable Load Balancing & Security Made Simple at AWS re:Invent 2023
Watch our Lightning Talk at AWS re:Invent 2023 on how HAProxy Fusion and HAProxy Enterprise enable simple and scalable load balancing and security on AWS.
Why Implementing App Security Can Lead To Spiraling Costs
To avoid overspending, businesses should reevaluate their security vendors and prioritize a more cost-effective approach.
HAProxy is Not Affected by the HTTP/2 Rapid Reset Attack (CVE-2023-44487)
CVE-2023-44487 found in the HTTP/2 protocol could allow a DoS attack against web servers, reverse proxies, or other software. HAProxy products are unaffected, but we're monitoring the situation.
August 2023 - CVE-2023-40225: Empty content-length header vulnerability fixed
HAProxy Technologies released new versions of its products to fix the vulnerability CVE-2023-40225. Learn more here.
Black Hat USA: Adaptable Security From HAProxy
HAProxy Technologies showcased its deep, targeted, and scalable security at Black Hat USA 2023.
HAProxy and Let’s Encrypt: Improved Support in acme.sh
Improvements in acme.sh integration allows you to manage TLS certificates with Let’s Encrypt without restarting HAProxy.
Application-Layer DDoS Attack Protection With HAProxy
HAProxy's high-performance security capabilities are utilized as a key line of defense by many of the world's top enterprises. Application-layer DDoS attacks are aimed at overwhelming an application w
Previous
Next
Showing 3 of 3 Pages