Too Long; Didn't Read
<a href="https://hackernoon.com/tagged/security" target="_blank">Security</a> products are notorious for being hard to install and slow to get usage in production. There is one corner of the security market where this is doubly true: the web application firewall (WAF). One of the <a href="https://labs.signalsciences.com/demand-more-from-your-web-application-firewall" target="_blank">secrets of the WAF industry</a> is that once the deal has closed and the product is sold, it takes months to get installed and — worse yet — it often goes unused. Due to all the problems they create, <a href="https://labs.signalsciences.com/three-ways-wafs-fail" target="_blank">WAFs get placed in monitoring mode</a> (sometimes called passive mode). The astute reader is probably well aware that passive is the opposite of active, which means the investment in a defensive security product is doing exactly nothing to actively protect against real threats.