We’re exhibiting at Cloud Expo Europe , 11-12 March 2015 at London Excel. Stand 202.
Black Friday black out protection with HAProxy
The media industry had lots of fun at the expense of e-commerce outlets on Black Friday mercilessly reporting on site crashes and outages . My wife yelled that I needed to ‘fix the Internet’ when Argos.co.uk would not respond immediately to her demands on Friday evening.
STunnel Cipher List and Qualys SSL Labs Testing
In the wake of all the recent vulnerabilities we have been working hard to make sure that we give the correct information to our customers. So we decided to setup our latest version of STunnel on our support server (https://support.loadbalancer.org) and test our Cipher Lists with the Qualys SSL Labs site (https://www.ssllabs.com/ssltest)
Another year, another IP Expo show
We’re dusting ourselves off after exhibiting at IPExpo 2014. A huge thank you to everyone who visited our stand during the two day event. There were some productive discussions, light-hearted fun, and we even talked about load balancing!!! We love the opportunity to get some face-to-face time and felt the show was so good we’ve already booked up for IPExpo 2015
The Poodle SSLv3
So here we go again! SSL is broken once more and this one now leaves us with no SSL Ciphers that we can reliably use in a live production site so I guess this now forces us to use the TLS suite of ciphers which in the past have also had problems. Lets put it this way – if you use any form of SSL ciphers your vulnerable! Qualys have again been quick to update the Qualys SSL Labs Test tool that they provide which is free to use. This will test your SSL Certificate and all the currently usable Ciphers for your site
Shell-shocked by shell shock? I give you “CMD Caret” ^&
There seems to have been so much hype over the recent bash bug, shell shock! And there were all the people in the Microsoft world thinking YES we are so cool we are NOT affected by it! Yea right I knew it, there had to be something much the same as the bash bug available in CMD.exe It affects the Windows CMD.exe Shell and I will provide a working example of how it can be exploited. It does show the whole hype of the bash bug bearing in mind you need access to the machines shell in the first place
Shell-shocked by shell shock? Bash vulnerability explained.
Having recovered from the recent Heartbleed vulnerabilities we now have another headline grabbing vulnerability to keep us all busy. First let me say that our product should be perfectly safe and secure unless you’ve already shared your passwords or forgotten to run “lbsecure”
A10 Networks’ Advanced Core Operating Systems (ACOS)
Discover how A10 Networks ACOS is increasingly the platform of choice for enterprises, service providers, Web giants and government organizations seeking to optimize the performance and security…
Enhanced Microsoft IIS health checks using VBscript
By default, the load balancer uses a TCP connect to the port defined in the Virtual Service to verify the health of the real (backend) servers. For IIS this would typically be port 80. In many cases this kind of health check is adequate but for IIS this if often not the case.
Source IP Addresses, STunnel, Haproxy and Server Logs
When using proxies such as STunnel and HAProxy it’s easy to loose track of the client source IP address. This occurs for example when HAProxy is used in it’s default configuration to load balance a number of back-end web servers. By default, the source IP address of the packet reaching the web servers is the IP address of the load balancer and not the IP address of the client