RoboCyberWall Aims to Block Linux Server Hacks

RoboCyberWall on Tuesday launched its proprietary precision firewall resolution bearing the identical identify. RoboCyberWall is designed to guard HTTP and HTTPS (SSL) ports on Linux-based Apache2 and NGINX Internet servers.

The patent-pending firewall blocks all identified exploits and zero-day assaults on Apache2 and NGINX Internet servers, in line with the developer. It’s the solely firewall designed from the bottom as much as shield the Linux Apache2 or NGINX Internet server’s root listing, in addition to the doc root listing.

The product’s Modular Safety paradigm for Linux server perimeters has been hacker examined for greater than a yr. It’s far safer than yesterday’s all-in-one firewalls, in line with the corporate, which describes them as “Jack of All Trades, Grasp of None.”

“RoboCyberWall-protected servers, regardless of 1000’s of makes an attempt by a number of hackers challenged to do in any other case, have by no means been efficiently hacked,” mentioned John R. Martinson Sr., CEO of RoboCyberWall.

The Linux server firewall resolution targets small and mid-sized enterprise customers. When coupled with totally suitable Internet utility firewalls from a number of distributors, RoboCyberWall supplies an entire safety resolution, Martinson advised LinuxInsider.

Matter of Necessity

No firewalls presently are designed particularly to guard the Internet server’s precise root listing. Hackers know this, so that they assault by way of the Web protocol deal with assigned to the Internet server that’s serving up packets for the area identify server by way of the HTTP protocol, defined Martinson. That permits hackers to breach the Internet server’s root listing to realize entry to the consumer’s information, which resides within the Internet server’s DocumentRoot listing.

“Web-borne threats similar to ransomware and different malware are driving the necessity for organizations to rethink their current safety frameworks, similar to firewalls and browser isolation,” Daniel Miller, director of product advertising at Ericom Software program, advised LinuxInsider.

The aggressive actions of well-organized and financed hackers implies that companies of each kind have to be vigilant or danger being crippled. That may be particularly troublesome for SMBs that wouldn’t have the financing or experience out there to mount subtle defensive efforts, mentioned Charles King, principal analyst at Pund-IT.

“RoboCyberWall goals to handle these organizations’ ache factors and preserve a few of their most susceptible targets protected from assaults and exploits,” he advised LinuxInsider.

What It Does

In securing the non-application portion of the stack, RoboCyberWall supplies pinpoint safety for Linux Apache2 or NGINX Internet server HTTP and HTTPS ports. Sometimes, these are ports 80 and 443, that are two of the highest three most-targeted ports for assault worldwide, primarily based on Akamai’s State of the Web report.

The attackers’ purpose is to get entry to the Internet servers’ change log information to allow them to take over the Apache2 or NGINX Internet server, famous Martinson, Hackers can use a identified hack, a zero-day exploit or a brute pressure try.

A nasty actor who has breached an Apache2 or NGINX Internet server’s root listing beneficial properties full entry to the DocumentRoot listing the place the precise information is situated.

Product Comparability

RoboCyberWall differs from competing safety instruments for Linux servers, mentioned Martinson, in 5 key areas:

• It’s straightforward to put in, utilizing little or no processor overhead;
• It’s cheap, licensed at US$8.95 per 30 days;
• Its dynamic whitelist ends in zero false positives;
• It prevents exploits relatively than cleansing up afterward; and
• It ends in no downtime or misplaced income.

“Older expertise has to guess which packets are good or unhealthy, making detection of zero-day assaults unattainable,” Martinson mentioned.

Typically, RoboCyberWall is a software-only resolution, that means that it’s downloadable and designed to run on a number Linux-based Apache2 and NGINX Internet server, mentioned King.

“That makes it easier and simpler to deploy than packaged options, and much cheaper than devoted firewall home equipment,” he added.

RoboCyberWall consumes minimal processing and reminiscence sources, and minimal whitelisting options. Whereas the product might endure from specializing in HTTP and HTTPS ports, these are those most frequently focused by hackers, King identified.

“The answer’s minimal footprint necessities additionally imply that it may be successfully used on older programs repurposed for Internet-serving wants. That’s a standard observe among the many cost-conscious SMBs which might be the corporate’s main market targets,” he defined.

Higher Mousetrap

Linux-based DevSecOps retailers which might be constructing fashionable purposes are one other area of interest buyer goal. RoboCyberWall ought to honest properly, as it’s purpose-built for shielding Internet purposes. Most gamers in that area have a variety of protection and don’t essentially give attention to Linux/Internet purposes, mentioned George Gerchow, vice chairman of safety and compliance at Sumo Logic.

“At Sumo Logic, we don’t run Home windows in any respect, and so for us and for different organizations working related environments, RoboCyberWall would complement what we’re already doing,” he advised LinuxInsider.

There’s a main want for what RoboCyberWall affords in right this moment’s market. Your entire InfoSec neighborhood needs to be transferring to host-based safety options that scale and use clever automation to stop assaults, he mentioned, as an alternative of conventional inline options that don’t scale and have a tough time detecting new malware and unhealthy packets.