SenthilKumar Periasamy

  1. Granular Application (vserver) based Role Based Access Control

    In the previous blog post, http://blogs.citrix.com/2011/12/26/using-role-based-access-controlrbac-to-securely-manage-the-netscaler-configuration/ We had looked in to how to configure the users and cmdspec so that tighter administration control can be enforced in Netscaler. In this blog, we will see a special use case to enforce tighter control in Load balancing virtual server. In today’s Application centric world the ADC entities are also defined based on Application and it is represented by ...

    Read More

  2. Slow-Read attack affects the web Servers – Know how to Protect against this attack using NetScaler?

    In the following blogs we discussed about Slow-Header and Slow-Post attacks, respectively in detail (http://blogs.citrix.com/2011/09/20/slow-header-attack-brought-down-many-sites-recently-%E2%80%93-know-how-to-protect-against-such-attacks-using-netscaler/) (http://blogs.citrix.com/2011/09/23/slow-post-attack-affects-applications-around-the-world-%E2%80%93-know-how-to-protect-against-such-attacks-using-netscaler/) Now this blog targets Slow-Read attack. Slow-Header and Slow-Post attack works by posting the request at a very slow speed. However, the Slow-Read  attack targets at reading a response from server at a very slow speed. When making a Slow-Read attack, a client establishes a connection to the Server and sends an appropriate ...

    Read More

  3. Using Role Based Access Control(RBAC) to securely manage the NetScaler configuration

    System Administration has the problem of sorting out relation between security in one hand and functionality and ease of use in other. The ability to judge the type of information to be accessed by employees and ensuring the same with completely secure entities is not an easy task.  Role Based Access Control(RBAC) plays an important role in separating roles and segregating privileges. Roles are assigned ...

    Read More

  4. Slow-Post Attack affects applications around the world – Know how to protect against such attacks using NetScaler?

    The previous blog post (http://blogs.citrix.com/2011/09/20/slow-header-attack-brought-down-many-sites-recently-%E2%80%93-know-how-to-protect-against-such-attacks-using-netscaler/) covers Slow-header attack and continuing on same line, this one covers the Slow-post attack.  All these belong to new class of attacks which circumvents the inherent protection offered in networking gears. Also these attacks use common form of HTTP Method used in most of applications thus causing resource consumption in the server. The attack was carefully crafted which affects many ...

    Read More

  5. Slow-Header attack brought down many sites recently – Know how to protect against such attacks using NetScaler?

    DoS attacks have been around for over a decade now and most of the networking gears have inherent protection against such attacks. Then what happened with Slow-header attack? Aren’t this same kind of DoS attacks? Why the sites did come down and inherent protection failed to stop these?? Unfortunately the answer is NO, these new attacks were not the same kind of attacks we saw ...

    Read More