One of the first decisions when architecting a Web Application Firewall is whether or not to add blacklists based on IP addresses. Even though building rules based on IP addresses is bad, it’s still the right approach for most scenarios.
Read full news article on Dzone