{"id":52907,"date":"2024-07-01T07:00:00","date_gmt":"2024-07-01T14:00:00","guid":{"rendered":"https:\/\/dhblog.dream.press\/blog\/?p=52907"},"modified":"2025-05-26T12:42:15","modified_gmt":"2025-05-26T19:42:15","slug":"firewall-de-aplicacao-web","status":"publish","type":"post","link":"https:\/\/www-dev.dreamhost.com\/blog\/pt\/firewall-de-aplicacao-web\/","title":{"rendered":"Firewall de Aplica\u00e7\u00e3o Web (WAF): O Que \u00c9 e Como Us\u00e1-lo"},"content":{"rendered":"<p>J\u00e1 tentou entrar em uma boate badalada em Vegas?<\/p>\n<p>Fique comigo aqui.<\/p>\n<p>Mesmo que voc\u00ea n\u00e3o tenha, provavelmente est\u00e1 familiarizado com o conceito de seguran\u00e7as. Entre outras coisas, eles s\u00e3o respons\u00e1veis por observar a fila \u2014 e expulsar qualquer pessoa vestida com chinelos, uma camiseta desgastada, ou um macac\u00e3o tem\u00e1tico de animais que n\u00e3o s\u00f3 faria com que superaquecessem, mas <em>definitivamente<\/em> ofuscaria o famoso DJ.<\/p>\n<p>Assim como esses seguran\u00e7as, os firewalls de aplicativos web (WAFs) revisam todo o tr\u00e1fego tentando acessar um aplicativo web para que os profissionais de seguran\u00e7a, bem como os simples propriet\u00e1rios e gerentes de sites, n\u00e3o precisem se preocupar com qualquer problema entrando.<\/p>\n<p>Pronto para acelerar a <a href=\"https:\/\/www.dreamhost.com\/blog\/pt\/proteja-seu-site-wordpress\/\" target=\"_blank\" rel=\"noreferrer noopener\">seguran\u00e7a do seu site WordPress<\/a> aproveitando os WAFs?<\/p>\n<p>Este artigo ir\u00e1 introduzir voc\u00ea aos conceitos fundamentais de WAF e como implementar este m\u00e9todo de seguran\u00e7a em seu <a href=\"https:\/\/www.dreamhost.com\/blog\/pt\/o-que-e-wordpress\/\" target=\"_blank\" rel=\"noreferrer noopener\">site WordPress<\/a>.<\/p>\n<h2 id=\"h-what-is-a-web-application-firewall-waf\" class=\"wp-block-heading\">O que \u00e9 um Firewall de Aplica\u00e7\u00e3o Web (WAF)?<\/h2>\n<figure class=\"wp-block-image size-full\"><img decoding=\"async\" width=\"1600\" height=\"1027\" data-src=\"https:\/\/www.dreamhost.com\/blog\/wp-content\/uploads\/2024\/06\/01_what_is_a_web_application_firewall_.webp\" alt=\"O diagrama mostra como funciona um firewall de aplica\u00e7\u00e3o web, com o WAF filtrando o tr\u00e1fego antes de chegar ao servidor.\" class=\"wp-image-47606 lazyload\" data-srcset=\"https:\/\/www-dev.dreamhost.com\/blog\/wp-content\/uploads\/2024\/06\/01_what_is_a_web_application_firewall_.webp 1600w, https:\/\/www-dev.dreamhost.com\/blog\/wp-content\/uploads\/2024\/06\/01_what_is_a_web_application_firewall_-300x193.webp 300w, https:\/\/www-dev.dreamhost.com\/blog\/wp-content\/uploads\/2024\/06\/01_what_is_a_web_application_firewall_-1024x657.webp 1024w, https:\/\/www-dev.dreamhost.com\/blog\/wp-content\/uploads\/2024\/06\/01_what_is_a_web_application_firewall_-768x493.webp 768w, https:\/\/www-dev.dreamhost.com\/blog\/wp-content\/uploads\/2024\/06\/01_what_is_a_web_application_firewall_-1536x986.webp 1536w, https:\/\/www-dev.dreamhost.com\/blog\/wp-content\/uploads\/2024\/06\/01_what_is_a_web_application_firewall_-600x385.webp 600w, https:\/\/www-dev.dreamhost.com\/blog\/wp-content\/uploads\/2024\/06\/01_what_is_a_web_application_firewall_-1200x770.webp 1200w, https:\/\/www-dev.dreamhost.com\/blog\/wp-content\/uploads\/2024\/06\/01_what_is_a_web_application_firewall_-730x469.webp 730w, https:\/\/www-dev.dreamhost.com\/blog\/wp-content\/uploads\/2024\/06\/01_what_is_a_web_application_firewall_-1460x937.webp 1460w, https:\/\/www-dev.dreamhost.com\/blog\/wp-content\/uploads\/2024\/06\/01_what_is_a_web_application_firewall_-784x503.webp 784w, https:\/\/www-dev.dreamhost.com\/blog\/wp-content\/uploads\/2024\/06\/01_what_is_a_web_application_firewall_-1568x1006.webp 1568w, https:\/\/www-dev.dreamhost.com\/blog\/wp-content\/uploads\/2024\/06\/01_what_is_a_web_application_firewall_-877x563.webp 877w\" data-sizes=\"(max-width: 1600px) 100vw, 1600px\" src=\"data:image\/svg+xml;base64,PHN2ZyB3aWR0aD0iMSIgaGVpZ2h0PSIxIiB4bWxucz0iaHR0cDovL3d3dy53My5vcmcvMjAwMC9zdmciPjwvc3ZnPg==\" style=\"--smush-placeholder-width: 1600px; --smush-placeholder-aspect-ratio: 1600\/1027;\" \/><\/figure>\n<p>Geralmente, quando algu\u00e9m simplesmente diz &#8220;<a href=\"https:\/\/www.dreamhost.com\/glossary\/hosting\/firewall\/\" target=\"_blank\" rel=\"noreferrer noopener\">firewall<\/a>,&#8221; est\u00e1 se referindo a firewalls de rede. Essas s\u00e3o ferramentas de seguran\u00e7a que <a href=\"https:\/\/www.dreamhost.com\/pt\/produtos\/dreamshield\/\" target=\"_blank\" rel=\"noreferrer noopener\">monitoram automaticamente o tr\u00e1fego na sua rede<\/a> e escolhem permitir ou bloquear visitas de\/para certos sites e fontes com base em regras de seguran\u00e7a predefinidas.<\/p>\n<p>Este tipo de firewall \u00e9 uma barreira entre redes confi\u00e1veis, como sites que uma equipe de ciberseguran\u00e7a j\u00e1 verificou, e redes n\u00e3o confi\u00e1veis, como sites desconhecidos que hackers poderiam usar para invadir seus sistemas e coletar dados.<\/p>\n\n\n\n<div class=\"glossary-term\">\n\t<a\n\t\tclass=\"glossary-term__above-title\"\n\t\thref=\"\"\n\t\ttarget=\"_blank\"\n\t\trel=\"noopener noreferrer\"\n\t>\n\t\t<svg xmlns=\"http:\/\/www.w3.org\/2000\/svg\" viewBox=\"0 0 640 512\"><path d=\"M320 32c-8.1 0-16.1 1.4-23.7 4.1L15.8 137.4C6.3 140.9 0 149.9 0 160s6.3 19.1 15.8 22.6l57.9 20.9C57.3 229.3 48 259.8 48 291.9v28.1c0 28.4-10.8 57.7-22.3 80.8c-6.5 13-13.9 25.8-22.5 37.6C0 442.7-.9 448.3 .9 453.4s6 8.9 11.2 10.2l64 16c4.2 1.1 8.7 .3 12.4-2s6.3-6.1 7.1-10.4c8.6-42.8 4.3-81.2-2.1-108.7C90.3 344.3 86 329.8 80 316.5V291.9c0-30.2 10.2-58.7 27.9-81.5c12.9-15.5 29.6-28 49.2-35.7l157-61.7c8.2-3.2 17.5 .8 20.7 9s-.8 17.5-9 20.7l-157 61.7c-12.4 4.9-23.3 12.4-32.2 21.6l159.6 57.6c7.6 2.7 15.6 4.1 23.7 4.1s16.1-1.4 23.7-4.1L624.2 182.6c9.5-3.4 15.8-12.5 15.8-22.6s-6.3-19.1-15.8-22.6L343.7 36.1C336.1 33.4 328.1 32 320 32zM128 408c0 35.3 86 72 192 72s192-36.7 192-72L496.7 262.6 354.5 314c-11.1 4-22.8 6-34.5 6s-23.5-2-34.5-6L143.3 262.6 128 408z\"\/><\/svg>\n\t\t<span><\/span>\n\t\t<svg xmlns=\"http:\/\/www.w3.org\/2000\/svg\" viewBox=\"0 0 384 512\"><path d=\"M342.6 233.4c12.5 12.5 12.5 32.8 0 45.3l-192 192c-12.5 12.5-32.8 12.5-45.3 0s-12.5-32.8 0-45.3L274.7 256 105.4 86.6c-12.5-12.5-12.5-32.8 0-45.3s32.8-12.5 45.3 0l192 192z\"\/><\/svg>\n\t<\/a>\n    <h3>Networking<\/h3>\n    <p>Uma rede \u00e9 um grupo de computadores que compartilham recursos e protocolos de comunica\u00e7\u00e3o. Essas redes podem ser configuradas como conex\u00f5es com fio, \u00f3pticas ou sem fio.<\/p>\n            <a\n            href=\"https:\/\/www.dreamhost.com\/glossary\/hosting\/network\/\"\n                        class=\"btn btn--white-outline btn--sm btn--round\"\n                                    target=\"_blank\"\n            rel=\"noopener noreferrer\"\n            >\n                            Leia Mais                    <\/a>\n\n<\/div>\n\n<p>Um firewall de aplica\u00e7\u00e3o web (WAF) \u00e9 um tipo de firewall configurado para trabalhar especificamente com aplicativos web.<br><br>O que isso significa, exatamente? Vamos aprofundar.<\/p>\n<h2 id=\"h2_how-waf-technology-protects-web-applications\" class=\"wp-block-heading\">Como a Tecnologia WAF Protege Aplica\u00e7\u00f5es Web<\/h2>\n<p>Os WAFs &#8220;observam&#8221; o tr\u00e1fego da web bidirecional (HTTP\/HTTPS) que se move entre aplica\u00e7\u00f5es web e a internet, identificando e bloqueando atores maliciosos antes que eles cheguem \u00e0 sua aplica\u00e7\u00e3o web. Os WAFs fazem isso atrav\u00e9s de filtragem, monitoramento e bloqueio de tr\u00e1fego ruim e ataques na camada de aplica\u00e7\u00e3o.<\/p>\n<p>Aqui est\u00e3o os principais m\u00e9todos que os WAFs utilizam para filtrar solicita\u00e7\u00f5es e eliminar as piores delas antes que atinjam o servidor web:<\/p>\n<ul class=\"wp-block-list\"><li><strong>Blocklist WAFs:<\/strong> Esta abordagem bloqueia certos <em>tipos<\/em> de tr\u00e1fego, e n\u00e3o fontes precisas.<\/li><li><strong>Allowlist WAFs:<\/strong> Este m\u00e9todo bloqueia <em>todo<\/em> o tr\u00e1fego por padr\u00e3o, permitindo apenas o tr\u00e1fego aprovado. Embora possa ser uma abordagem mais segura, tamb\u00e9m pode reter tr\u00e1fego totalmente leg\u00edtimo e n\u00e3o antecipado.<\/li><li><strong>Hybrid WAFs:<\/strong> Este modelo de WAF \u00e9 exatamente o que parece \u2014 combina elementos de blocklist e allowlist simultaneamente.<\/li><\/ul>\n<p>Os WAFs s\u00e3o \u00fateis contra ataques como falsifica\u00e7\u00e3o entre sites, inclus\u00e3o de arquivos, ataques DDoS, inje\u00e7\u00f5es SQL, manipula\u00e7\u00e3o de cookies, ataques Man-in-the-Middle (MiTM), scripts entre sites (XSS) e outros.<\/p>\n<p>Um WAF moderno e confi\u00e1vel ajudar\u00e1 a proteger aplicativos contra a lista de riscos de seguran\u00e7a do Projeto de Seguran\u00e7a de Aplica\u00e7\u00f5es Web Abertas, conhecido como <a href=\"https:\/\/owasp.org\/www-project-top-ten\/\" target=\"_blank\" rel=\"noreferrer noopener\">OWASP Top 10<\/a>.<\/p>\n<h3 class=\"wp-block-heading\">WAFs Vs. Firewalls de Pr\u00f3xima Gera\u00e7\u00e3o<\/h3>\n<p>Um firewall de pr\u00f3xima gera\u00e7\u00e3o (NGFW) \u00e9 um tipo de firewall que combina caracter\u00edsticas de WAF com as de firewalls de rede tradicionais.<\/p>\n<p>Isso \u00e9 feito monitorando as solicita\u00e7\u00f5es de rede recebidas e gerenciando o tr\u00e1fego em redes privadas.<\/p>\n<p>Embora os WAFs e os NGFWs se sobreponham em termos de funcionalidades, suas responsabilidades e capacidades centrais diferem.<\/p>\n<p><strong>WAFs<\/strong> concentram-se totalmente em prevenir ataques na web para proteger aplica\u00e7\u00f5es voltadas para a internet e aplica\u00e7\u00f5es nativas da nuvem.<\/p>\n<p><strong>Firewalls de pr\u00f3xima gera\u00e7\u00e3o<\/strong> v\u00e3o um pouco al\u00e9m. Sim, eles fornecem antiv\u00edrus e capacidades de <a href=\"https:\/\/www.dreamhost.com\/blog\/pt\/aviso-este-site-contem-malware\/\" target=\"_blank\" rel=\"noreferrer noopener\">anti-Malware<\/a>, mas tamb\u00e9m podem aplicar pol\u00edticas de seguran\u00e7a baseadas em usu\u00e1rios e coletar informa\u00e7\u00f5es para auxiliar na tomada de decis\u00f5es ao abordar poss\u00edveis amea\u00e7as.<\/p>\n\n<div class=\"article-newsletter article-newsletter--gradient\">\n\n\n<h2>Get Content Delivered Straight to Your Inbox<\/h2><p>Subscribe now to receive all the latest updates, delivered directly to your inbox.<\/p><form class=\"nwsl-form\" id=\"newsletter_block_\" novalidate><div class=\"messages\"><\/div><div class=\"form-group\"><label for=\"input_newsletter_block_\"><input type=\"email\"name=\"email\"id=\"input_newsletter_block_\"placeholder=\"Enter your email address\"novalidatedisabled=\"disabled\"\/><\/label><button type=\"submit\"class=\"btn btn--brand\"disabled=\"disabled\"><span>Sign Me Up!<\/span><svg width=\"21\" height=\"14\" viewBox=\"0 0 21 14\" fill=\"none\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\">\n<path d=\"M13.8523 0.42524L12.9323 1.34521C12.7095 1.56801 12.7132 1.9304 12.9404 2.14865L16.7241 5.7823H0.5625C0.251859 5.7823 0 6.03416 0 6.3448V7.6573C0 7.96794 0.251859 8.2198 0.5625 8.2198H16.7241L12.9405 11.8535C12.7132 12.0717 12.7095 12.4341 12.9323 12.6569L13.8523 13.5769C14.072 13.7965 14.4281 13.7965 14.6478 13.5769L20.8259 7.39879C21.0456 7.17913 21.0456 6.82298 20.8259 6.60327L14.6477 0.42524C14.4281 0.205584 14.0719 0.205584 13.8523 0.42524Z\" fill=\"white\"\/>\n<\/svg>\n<\/button><\/div><\/form><\/div>\n<h2 id=\"h2_the-3-types-of-web-application-firewalls\" class=\"wp-block-heading\">Os 3 Tipos de Firewalls para Aplica\u00e7\u00f5es Web<\/h2>\n<figure class=\"wp-block-image size-full\"><img decoding=\"async\" width=\"1600\" height=\"858\" data-src=\"https:\/\/www.dreamhost.com\/blog\/wp-content\/uploads\/2024\/06\/02_types_of_web_application_firewalls.webp\" alt=\"Tipos de firewalls de aplica\u00e7\u00e3o web \u2013 baseados em hardware, software e cloud \u2013 s\u00e3o mostrados com \u00edcones roxos.\" class=\"wp-image-47609 lazyload\" data-srcset=\"https:\/\/www-dev.dreamhost.com\/blog\/wp-content\/uploads\/2024\/06\/02_types_of_web_application_firewalls.webp 1600w, https:\/\/www-dev.dreamhost.com\/blog\/wp-content\/uploads\/2024\/06\/02_types_of_web_application_firewalls-300x161.webp 300w, https:\/\/www-dev.dreamhost.com\/blog\/wp-content\/uploads\/2024\/06\/02_types_of_web_application_firewalls-1024x549.webp 1024w, https:\/\/www-dev.dreamhost.com\/blog\/wp-content\/uploads\/2024\/06\/02_types_of_web_application_firewalls-768x412.webp 768w, https:\/\/www-dev.dreamhost.com\/blog\/wp-content\/uploads\/2024\/06\/02_types_of_web_application_firewalls-1536x824.webp 1536w, https:\/\/www-dev.dreamhost.com\/blog\/wp-content\/uploads\/2024\/06\/02_types_of_web_application_firewalls-600x322.webp 600w, https:\/\/www-dev.dreamhost.com\/blog\/wp-content\/uploads\/2024\/06\/02_types_of_web_application_firewalls-1200x644.webp 1200w, https:\/\/www-dev.dreamhost.com\/blog\/wp-content\/uploads\/2024\/06\/02_types_of_web_application_firewalls-730x391.webp 730w, https:\/\/www-dev.dreamhost.com\/blog\/wp-content\/uploads\/2024\/06\/02_types_of_web_application_firewalls-1460x783.webp 1460w, https:\/\/www-dev.dreamhost.com\/blog\/wp-content\/uploads\/2024\/06\/02_types_of_web_application_firewalls-784x420.webp 784w, https:\/\/www-dev.dreamhost.com\/blog\/wp-content\/uploads\/2024\/06\/02_types_of_web_application_firewalls-1568x841.webp 1568w, https:\/\/www-dev.dreamhost.com\/blog\/wp-content\/uploads\/2024\/06\/02_types_of_web_application_firewalls-877x470.webp 877w\" data-sizes=\"(max-width: 1600px) 100vw, 1600px\" src=\"data:image\/svg+xml;base64,PHN2ZyB3aWR0aD0iMSIgaGVpZ2h0PSIxIiB4bWxucz0iaHR0cDovL3d3dy53My5vcmcvMjAwMC9zdmciPjwvc3ZnPg==\" style=\"--smush-placeholder-width: 1600px; --smush-placeholder-aspect-ratio: 1600\/858;\" \/><\/figure>\n<p>Firewalls de aplica\u00e7\u00e3o web geralmente assumem tr\u00eas formas principais:<\/p>\n<h3 class=\"wp-block-heading\">1. Firewall de Aplica\u00e7\u00e3o Web Baseado em Hardware<\/h3>\n<p>Este tipo de firewall de aplica\u00e7\u00e3o \u00e9 implementado em um dispositivo de hardware f\u00edsico, que \u00e9 instalado dentro da rede local (LAN) perto dos seus servidores web e de aplica\u00e7\u00e3o.<\/p>\n<p><strong>Vantagens:<\/strong> Oferece velocidade e desempenho r\u00e1pidos devido \u00e0 sua proximidade f\u00edsica ao servidor, permitindo rastrear e filtrar pacotes de dados com lat\u00eancia m\u00ednima.<\/p>\n<p><strong>Desvantagens:<\/strong> Como a maioria dos im\u00f3veis atualmente, possuir e manter um WAF f\u00edsico pode ser caro porque precisa ocupar um espa\u00e7o f\u00edsico. As despesas incluem aquisi\u00e7\u00e3o, instala\u00e7\u00e3o, armazenamento e manuten\u00e7\u00e3o.<\/p>\n<p><strong>Melhor para:<\/strong> Solu\u00e7\u00f5es de WAF em hardware funcionam bem para grandes organiza\u00e7\u00f5es com alto tr\u00e1fego e or\u00e7amentos elevados. Grandes empresas precisam de velocidade e desempenho eficientes e podem suportar os custos associados.<\/p>\n<h3 class=\"wp-block-heading\">2. Firewall de Aplicativo Web Baseado em Software<\/h3>\n<p>Os WAFs baseados em software s\u00e3o instalados em uma m\u00e1quina virtual (VM) em vez de um aparelho f\u00edsico. A partir da\u00ed, a funcionalidade real \u00e9 semelhante aos WAFs baseados em hardware. \u00c9 importante lembrar que os usu\u00e1rios precisar\u00e3o executar e manter a VM para usar essa solu\u00e7\u00e3o.<\/p>\n<p><strong>Vantagens:<\/strong> \u00c9 flex\u00edvel. Voc\u00ea pode us\u00e1-lo tanto em uma configura\u00e7\u00e3o local quanto na nuvem, conectando-se a servidores baseados na nuvem. Tamb\u00e9m \u00e9 mais acess\u00edvel do que os WAFs baseados em hardware.<\/p>\n<p><strong>Desvantagens:<\/strong> Funcionar em uma m\u00e1quina virtual naturalmente resulta em uma lat\u00eancia mais alta, tornando um WAF de software de forma geral menos r\u00e1pido.<\/p>\n<p><strong>Melhor para:<\/strong> WAFs de software s\u00e3o adequados para organiza\u00e7\u00f5es que utilizam servidores baseados em nuvem. Al\u00e9m disso, s\u00e3o \u00f3timos para pequenas e m\u00e9dias empresas que precisam de prote\u00e7\u00e3o eficaz de aplica\u00e7\u00f5es web a um custo acess\u00edvel, mas que <em>n\u00e3o<\/em> t\u00eam grandes demandas de tr\u00e1fego.<\/p>\n<h3 class=\"wp-block-heading\" id=\"h-3-cloud-based-waf-deployment\">3. Implanta\u00e7\u00e3o de WAF Baseada em Nuvem<\/h3>\n<p>Empresas de SaaS (software como servi\u00e7o) fornecem e gerenciam a mais recente itera\u00e7\u00e3o de WAFs. Os componentes s\u00e3o totalmente <a href=\"https:\/\/www.dreamhost.com\/blog\/pt\/quais-sao-os-beneficios-do-cloud-hosting\/\" target=\"_blank\" rel=\"noreferrer noopener\">na nuvem<\/a>, sem necessidade de instala\u00e7\u00f5es.<\/p>\n<p><strong>Vantagens:<\/strong> Os WAFs baseados em nuvem s\u00e3o bastante simples para os usu\u00e1rios finais. Eles simplesmente precisam pagar por um plano de assinatura; o provedor de servi\u00e7os cuida de toda a manuten\u00e7\u00e3o cont\u00ednua.<\/p>\n<p><strong>Desvantagens:<\/strong> Op\u00e7\u00f5es de personaliza\u00e7\u00e3o limitadas para os usu\u00e1rios, uma vez que o provedor de servi\u00e7o gerencia a tecnologia WAF.<\/p>\n<p><strong>Melhor para:<\/strong> Recomendamos o WAF via nuvem para pequenas e at\u00e9 m\u00e9dias organiza\u00e7\u00f5es que n\u00e3o disp\u00f5em de espa\u00e7o para armazenamento f\u00edsico ou dinheiro ou pessoal para lidar com manuten\u00e7\u00e3o manual.<\/p>\n<h2 id=\"h2_why-use-a-web-app-firewall\" class=\"wp-block-heading\">Por que usar um Firewall de Aplicativo Web?<\/h2>\n<p>WAF, ou qualquer forma de firewall focado em aplicativos, \u00e9 uma necessidade em nossa era conectada \u00e0 internet.<\/p>\n<p>Antes da nuvem, havia muitos firewalls de rede entre as redes externas e internas.<\/p>\n<p>P\u00f3s-nuvem, essa configura\u00e7\u00e3o simplesmente n\u00e3o funcionar\u00e1. Aplica\u00e7\u00f5es modernas n\u00e3o operam em redes internas isoladas. Em vez disso, elas precisam se conectar \u00e0 internet frequentemente para fazer suas APIs e outras integra\u00e7\u00f5es funcionarem.<\/p>\n<p>Os WAFs abordam essa quest\u00e3o ao filtrar o tr\u00e1fego de rede, facilitando e agilizando a conex\u00e3o direta das aplica\u00e7\u00f5es com a internet.<\/p>\n<p>A tela que eles fornecem \u00e9 cr\u00edtica. <a href=\"https:\/\/www.verizon.com\/business\/resources\/reports\/2024-dbir-data-breach-investigations-report.pdf\" target=\"_blank\" rel=\"noreferrer noopener\">De acordo com o Relat\u00f3rio de Investiga\u00e7\u00f5es de Viola\u00e7\u00e3o de Dados de 2024<\/a>, aplica\u00e7\u00f5es web foram o principal caminho que hackers utilizaram para iniciar viola\u00e7\u00f5es de dados em 2023.<\/p>\n<figure class=\"wp-block-image size-full\"><img decoding=\"async\" width=\"1600\" height=\"1134\" data-src=\"https:\/\/www.dreamhost.com\/blog\/wp-content\/uploads\/2024\/06\/03_wafs_are_critical_to_security.webp\" alt=\"Um gr\u00e1fico circular mostra por que os WAFs s\u00e3o cr\u00edticos para a seguran\u00e7a. Hackers violam dados atrav\u00e9s de aplicativos web 60% das vezes.\" class=\"wp-image-47611 lazyload\" data-srcset=\"https:\/\/www-dev.dreamhost.com\/blog\/wp-content\/uploads\/2024\/06\/03_wafs_are_critical_to_security.webp 1600w, https:\/\/www-dev.dreamhost.com\/blog\/wp-content\/uploads\/2024\/06\/03_wafs_are_critical_to_security-300x213.webp 300w, https:\/\/www-dev.dreamhost.com\/blog\/wp-content\/uploads\/2024\/06\/03_wafs_are_critical_to_security-1024x726.webp 1024w, https:\/\/www-dev.dreamhost.com\/blog\/wp-content\/uploads\/2024\/06\/03_wafs_are_critical_to_security-768x544.webp 768w, https:\/\/www-dev.dreamhost.com\/blog\/wp-content\/uploads\/2024\/06\/03_wafs_are_critical_to_security-1536x1089.webp 1536w, https:\/\/www-dev.dreamhost.com\/blog\/wp-content\/uploads\/2024\/06\/03_wafs_are_critical_to_security-600x425.webp 600w, https:\/\/www-dev.dreamhost.com\/blog\/wp-content\/uploads\/2024\/06\/03_wafs_are_critical_to_security-1200x851.webp 1200w, https:\/\/www-dev.dreamhost.com\/blog\/wp-content\/uploads\/2024\/06\/03_wafs_are_critical_to_security-730x517.webp 730w, https:\/\/www-dev.dreamhost.com\/blog\/wp-content\/uploads\/2024\/06\/03_wafs_are_critical_to_security-1460x1035.webp 1460w, https:\/\/www-dev.dreamhost.com\/blog\/wp-content\/uploads\/2024\/06\/03_wafs_are_critical_to_security-784x556.webp 784w, https:\/\/www-dev.dreamhost.com\/blog\/wp-content\/uploads\/2024\/06\/03_wafs_are_critical_to_security-1568x1111.webp 1568w, https:\/\/www-dev.dreamhost.com\/blog\/wp-content\/uploads\/2024\/06\/03_wafs_are_critical_to_security-877x622.webp 877w\" data-sizes=\"(max-width: 1600px) 100vw, 1600px\" src=\"data:image\/svg+xml;base64,PHN2ZyB3aWR0aD0iMSIgaGVpZ2h0PSIxIiB4bWxucz0iaHR0cDovL3d3dy53My5vcmcvMjAwMC9zdmciPjwvc3ZnPg==\" style=\"--smush-placeholder-width: 1600px; --smush-placeholder-aspect-ratio: 1600\/1134;\" \/><\/figure>\n<p>Os WAFs n\u00e3o conseguem resolver as falhas de seguran\u00e7a ou vulnerabilidades subjacentes das aplica\u00e7\u00f5es web, mas podem ajudar a bloquear c\u00f3digos maliciosos e a perda dos seus dados sens\u00edveis ao interromper sondagens e ao fechar muitas vias de ataque e limitando a taxa de solicita\u00e7\u00f5es.<\/p>\n<h2 id=\"h2_how-to-install-a-waf-using-wordpress-in-3-steps\" class=\"wp-block-heading\">Como Instalar um WAF Usando WordPress em 3 Passos<\/h2>\n<p>Se voc\u00ea \u00e9 um usu\u00e1rio do WordPress que \u00e9 novo no conceito de WAF, sugerimos fortemente a escolha de um <a href=\"https:\/\/www.dreamhost.com\/blog\/pt\/introducao-aos-plugins-do-wordpress\/\" target=\"_blank\" rel=\"noreferrer noopener\">Plugin do WordPress<\/a> para lidar com suas necessidades de WAF.<\/p>\n\n\n\n<div class=\"glossary-term\">\n\t<a\n\t\tclass=\"glossary-term__above-title\"\n\t\thref=\"\"\n\t\ttarget=\"_blank\"\n\t\trel=\"noopener noreferrer\"\n\t>\n\t\t<svg xmlns=\"http:\/\/www.w3.org\/2000\/svg\" viewBox=\"0 0 640 512\"><path d=\"M320 32c-8.1 0-16.1 1.4-23.7 4.1L15.8 137.4C6.3 140.9 0 149.9 0 160s6.3 19.1 15.8 22.6l57.9 20.9C57.3 229.3 48 259.8 48 291.9v28.1c0 28.4-10.8 57.7-22.3 80.8c-6.5 13-13.9 25.8-22.5 37.6C0 442.7-.9 448.3 .9 453.4s6 8.9 11.2 10.2l64 16c4.2 1.1 8.7 .3 12.4-2s6.3-6.1 7.1-10.4c8.6-42.8 4.3-81.2-2.1-108.7C90.3 344.3 86 329.8 80 316.5V291.9c0-30.2 10.2-58.7 27.9-81.5c12.9-15.5 29.6-28 49.2-35.7l157-61.7c8.2-3.2 17.5 .8 20.7 9s-.8 17.5-9 20.7l-157 61.7c-12.4 4.9-23.3 12.4-32.2 21.6l159.6 57.6c7.6 2.7 15.6 4.1 23.7 4.1s16.1-1.4 23.7-4.1L624.2 182.6c9.5-3.4 15.8-12.5 15.8-22.6s-6.3-19.1-15.8-22.6L343.7 36.1C336.1 33.4 328.1 32 320 32zM128 408c0 35.3 86 72 192 72s192-36.7 192-72L496.7 262.6 354.5 314c-11.1 4-22.8 6-34.5 6s-23.5-2-34.5-6L143.3 262.6 128 408z\"\/><\/svg>\n\t\t<span><\/span>\n\t\t<svg xmlns=\"http:\/\/www.w3.org\/2000\/svg\" viewBox=\"0 0 384 512\"><path d=\"M342.6 233.4c12.5 12.5 12.5 32.8 0 45.3l-192 192c-12.5 12.5-32.8 12.5-45.3 0s-12.5-32.8 0-45.3L274.7 256 105.4 86.6c-12.5-12.5-12.5-32.8 0-45.3s32.8-12.5 45.3 0l192 192z\"\/><\/svg>\n\t<\/a>\n    <h3>Plugin<\/h3>\n    <p>Plugins do WordPress s\u00e3o servi\u00e7os adicionais que permitem estender a funcionalidade do Sistema de Gest\u00e3o de Conte\u00fado (CMS). Voc\u00ea pode usar plugins para quase tudo, habilitando funcionalidades como e-commerce e ferramentas de SEO.<\/p>\n            <a\n            href=\"https:\/\/www.dreamhost.com\/glossary\/wordpress\/plugin\/\"\n                        class=\"btn btn--white-outline btn--sm btn--round\"\n                                    target=\"_blank\"\n            rel=\"noopener noreferrer\"\n            >\n                            Leia Mais                    <\/a>\n\n<\/div>\n\n<p>Por qu\u00ea? Eles geralmente t\u00eam um desenvolvedor \u00fatil por tr\u00e1s deles, mas al\u00e9m disso, a maior comunidade WordPress \u00e9 um \u00f3timo recurso para suporte. Al\u00e9m disso, eles s\u00e3o especialmente constru\u00eddos para o WordPress para fornecer a flexibilidade, seguran\u00e7a, escalabilidade e velocidade que a maioria dos usu\u00e1rios precisa.<br><br>Para come\u00e7ar, vamos ver como selecionar e instalar o plugin WAF certo.&nbsp;<\/p>\n<h3 class=\"wp-block-heading\">1. Determine Suas Necessidades<\/h3>\n<p>Existem <em>centenas<\/em> de provedores de firewall de aplicativos web.<\/p>\n<p>Para restringi-los, comece listando seus requisitos espec\u00edficos com base em suas necessidades.<\/p>\n<p>Considere os seguintes fatores ao elaborar esta importante lista de compras:<\/p>\n<ul class=\"wp-block-list\"><li><strong>Or\u00e7amento:<\/strong> Voc\u00ea est\u00e1 procurando uma ferramenta gratuita ou est\u00e1 preparado para investir em um pacote premium com recursos avan\u00e7ados? Talvez voc\u00ea esteja em algum lugar no meio? Determinar seu or\u00e7amento ajudar\u00e1 a direcion\u00e1-lo para uma solu\u00e7\u00e3o hospedada em nuvem, software ou hardware.<\/li><li><strong>Controle e personaliza\u00e7\u00e3o:<\/strong> Qual n\u00edvel de controle voc\u00ea precisa? Voc\u00ea quer personalizar totalmente sua ferramenta, ou prefere us\u00e1-la como est\u00e1, diretamente da caixa?<\/li><li><strong>Seguran\u00e7a:<\/strong> A op\u00e7\u00e3o que voc\u00ea est\u00e1 considerando mant\u00e9m uma seguran\u00e7a rigorosa para que os dados da sua empresa, assim como quaisquer dados de usu\u00e1rio que voc\u00ea gerencie, sejam seguros e privados?<\/li><li><strong>Manuten\u00e7\u00e3o:<\/strong> Quanto de manuten\u00e7\u00e3o voc\u00ea est\u00e1 disposto a assumir?<\/li><li><strong>Funcionalidades:<\/strong> Liste quaisquer funcionalidades avan\u00e7adas de WAF que voc\u00ea acharia \u00fateis, como perfilamento de aplicativos, redes de entrega de conte\u00fado (CDNs), registro de tr\u00e1fego, etc.<\/li><li><strong>Avalia\u00e7\u00f5es:<\/strong> O que as pessoas que j\u00e1 trabalham com a ferramenta acham dela? Consulte sites de avalia\u00e7\u00f5es como G2 e blogs para descobrir isso.<\/li><\/ul>\n<p>Considerar esses fatores antecipadamente simplificar\u00e1 o processo de compara\u00e7\u00e3o. Voc\u00ea ter\u00e1 uma ideia mais clara do que est\u00e1 procurando, ajudando a descartar op\u00e7\u00f5es que n\u00e3o atendam \u00e0s suas necessidades.<\/p>\n<h3 class=\"wp-block-heading\">2. Escolha Seu Plugin<\/h3>\n<p>Agora, \u00e9 hora de comprar Plugins WordPress para a sua solu\u00e7\u00e3o ideal.<\/p>\n<p>Primeiro, voc\u00ea visitar\u00e1 o <a href=\"https:\/\/wordpress.org\/plugins\/\" target=\"_blank\" rel=\"noreferrer noopener\">diret\u00f3rio de Plugins do WordPress.org<\/a> ou a <a href=\"https:\/\/wordpress.com\/plugins\" target=\"_blank\" rel=\"noreferrer noopener\">biblioteca de Plugins do WordPress.com<\/a>. Digite \u201cWAF\u201d ou \u201cfirewall de aplica\u00e7\u00e3o web\u201d para iniciar sua busca. \u00c9 assim que voc\u00ea encontrar\u00e1 mais informa\u00e7\u00f5es sobre cada plugin, para que possa aprender sobre todas as suas op\u00e7\u00f5es.<\/p>\n<p>Voc\u00ea logo perceber\u00e1 que existem <em>muitos<\/em> plugins dispon\u00edveis! Para fazer sua sele\u00e7\u00e3o, use a lista de requisitos que voc\u00ea acabou de criar, bem como este resumo r\u00e1pido de algumas das ferramentas de firewall de aplica\u00e7\u00e3o web mais comuns:<\/p>\n<ul class=\"wp-block-list\"><li><a href=\"https:\/\/wordpress.org\/plugins\/all-in-one-wp-security-and-firewall\/\" target=\"_blank\" rel=\"noreferrer noopener\"><strong>All-In-One Security (AIOS)<\/strong><\/a><strong>:<\/strong> Este \u00e9 um plugin de WordPress focado em seguran\u00e7a bastante popular e completo. Ele inclui funcionalidades como um firewall de aplica\u00e7\u00e3o web gratuito (WAF), prote\u00e7\u00e3o contra for\u00e7a bruta, bloqueio de IP, monitoramento de atividades de usu\u00e1rios, seguran\u00e7a de login e muito mais.<\/li><li><a href=\"https:\/\/wordpress.org\/plugins\/sucuri-scanner\/\" target=\"_blank\" rel=\"noreferrer noopener\"><strong>Sucuri<\/strong><\/a><strong>:<\/strong> Compat\u00edvel com v\u00e1rias plataformas al\u00e9m do WordPress (Magento, Drupal e Joomla), Sucuri \u00e9 uma op\u00e7\u00e3o abrangente que oferece um WAF baseado na nuvem (premium), que escaneia e bloqueia tr\u00e1fego malicioso atrav\u00e9s de seus servidores proxy na nuvem para proteger suas aplica\u00e7\u00f5es web de amea\u00e7as online.<\/li><li><a href=\"https:\/\/wordpress.org\/plugins\/wordfence\/\" target=\"_blank\" rel=\"noreferrer noopener\"><strong>Wordfence<\/strong><\/a><strong>:<\/strong> Este plugin focado em seguran\u00e7a possui um firewall de aplica\u00e7\u00e3o integrado que defende contra amea\u00e7as. Ele conta com uma equipe dedicada e funcionalidades pagas e gratuitas que se integram perfeitamente ao WordPress para manter a integridade da criptografia e garantir a seguran\u00e7a dos dados.<\/li><li><a href=\"https:\/\/wordpress.org\/plugins\/cloudflare\/\" target=\"_blank\" rel=\"noreferrer noopener\"><strong>Cloudflare<\/strong><\/a><strong>:<\/strong> Este plugin de um l\u00edder em seguran\u00e7a e desempenho de sites inclui um WAF poderoso (pago) que foi feito sob medida para mitigar amea\u00e7as espec\u00edficas do WordPress em segundos.<\/li><li><a href=\"https:\/\/wordpress.org\/plugins\/malcare-security\/\" target=\"_blank\" rel=\"noreferrer noopener\"><strong>MalCare<\/strong><\/a><strong>:<\/strong> MalCare oferece um firewall de aplica\u00e7\u00e3o web gratuito e um scanner de malware na nuvem. Voc\u00ea tamb\u00e9m pode adicionar funcionalidades como tratamento instant\u00e2neo de malware e suporte personalizado mediante taxa.<\/li><\/ul>\n<h3 class=\"wp-block-heading\" id=\"h-3-install-and-configure-your-new-web-application-security\">3. Instale e Configure a Seguran\u00e7a da Sua Nova Aplica\u00e7\u00e3o Web<\/h3>\n<p>Depois de decidir sobre um plugin WAF, \u00e9 hora de instal\u00e1-lo e faz\u00ea-lo funcionar no seu site WordPress.<\/p>\n<p>N\u00f3s vamos explicar isso usando o plugin AIOS.<\/p>\n<p>Na barra lateral esquerda do seu editor WordPress, encontre <strong>Plugins<\/strong> > <strong>Adicionar Novo Plugin<\/strong>.<\/p>\n<figure class=\"wp-block-image size-full\"><img decoding=\"async\" width=\"2560\" height=\"880\" data-src=\"https:\/\/www.dreamhost.com\/blog\/wp-content\/uploads\/2024\/06\/04_add_new_plugin-scaled.webp\" alt=\"O menu Plugins aparece. As op\u00e7\u00f5es s\u00e3o 'Plugins Instalados' e 'Adicionar Novo Plugin', que est\u00e1 com uma caixa roxa ao redor\" class=\"wp-image-47613 lazyload\" data-srcset=\"https:\/\/www-dev.dreamhost.com\/blog\/wp-content\/uploads\/2024\/06\/04_add_new_plugin-scaled.webp 2560w, https:\/\/www-dev.dreamhost.com\/blog\/wp-content\/uploads\/2024\/06\/04_add_new_plugin-300x103.webp 300w, https:\/\/www-dev.dreamhost.com\/blog\/wp-content\/uploads\/2024\/06\/04_add_new_plugin-1024x352.webp 1024w, https:\/\/www-dev.dreamhost.com\/blog\/wp-content\/uploads\/2024\/06\/04_add_new_plugin-768x264.webp 768w, https:\/\/www-dev.dreamhost.com\/blog\/wp-content\/uploads\/2024\/06\/04_add_new_plugin-1536x528.webp 1536w, https:\/\/www-dev.dreamhost.com\/blog\/wp-content\/uploads\/2024\/06\/04_add_new_plugin-2048x704.webp 2048w, https:\/\/www-dev.dreamhost.com\/blog\/wp-content\/uploads\/2024\/06\/04_add_new_plugin-600x206.webp 600w, https:\/\/www-dev.dreamhost.com\/blog\/wp-content\/uploads\/2024\/06\/04_add_new_plugin-1200x413.webp 1200w, https:\/\/www-dev.dreamhost.com\/blog\/wp-content\/uploads\/2024\/06\/04_add_new_plugin-730x251.webp 730w, https:\/\/www-dev.dreamhost.com\/blog\/wp-content\/uploads\/2024\/06\/04_add_new_plugin-1460x502.webp 1460w, https:\/\/www-dev.dreamhost.com\/blog\/wp-content\/uploads\/2024\/06\/04_add_new_plugin-784x270.webp 784w, https:\/\/www-dev.dreamhost.com\/blog\/wp-content\/uploads\/2024\/06\/04_add_new_plugin-1568x539.webp 1568w, https:\/\/www-dev.dreamhost.com\/blog\/wp-content\/uploads\/2024\/06\/04_add_new_plugin-877x301.webp 877w, https:\/\/www-dev.dreamhost.com\/blog\/wp-content\/uploads\/2024\/06\/04_add_new_plugin-1754x603.webp 1754w\" data-sizes=\"(max-width: 2560px) 100vw, 2560px\" src=\"data:image\/svg+xml;base64,PHN2ZyB3aWR0aD0iMSIgaGVpZ2h0PSIxIiB4bWxucz0iaHR0cDovL3d3dy53My5vcmcvMjAwMC9zdmciPjwvc3ZnPg==\" style=\"--smush-placeholder-width: 2560px; --smush-placeholder-aspect-ratio: 2560\/880;\" \/><\/figure>\n<p>Use a barra de pesquisa para encontrar AIOS e, em seguida, clique no bot\u00e3o <strong>Instalar Agora<\/strong>. Espere alguns segundos enquanto isso \u00e9 realizado e depois clique em <strong>Ativar<\/strong>.<\/p>\n<p>Neste ponto, est\u00e1 instalado!<\/p>\n<p>O pr\u00f3ximo passo \u00e9 algo como uma &#8220;escolha sua pr\u00f3pria aventura&#8221;.<\/p>\n<p>Volte para a barra lateral esquerda do WordPress, encontre WP Security e selecione <strong>Configura\u00e7\u00f5es<\/strong>.<\/p>\n<figure class=\"wp-block-image size-full\"><img decoding=\"async\" width=\"1600\" height=\"728\" data-src=\"https:\/\/www.dreamhost.com\/blog\/wp-content\/uploads\/2024\/06\/05_wp_settings.webp\" alt=\"O menu de Seguran\u00e7a do WP \u00e9 exibido. A segunda op\u00e7\u00e3o, 'Configura\u00e7\u00f5es', est\u00e1 destacada\" class=\"wp-image-47615 lazyload\" data-srcset=\"https:\/\/www-dev.dreamhost.com\/blog\/wp-content\/uploads\/2024\/06\/05_wp_settings.webp 1600w, https:\/\/www-dev.dreamhost.com\/blog\/wp-content\/uploads\/2024\/06\/05_wp_settings-300x137.webp 300w, https:\/\/www-dev.dreamhost.com\/blog\/wp-content\/uploads\/2024\/06\/05_wp_settings-1024x466.webp 1024w, https:\/\/www-dev.dreamhost.com\/blog\/wp-content\/uploads\/2024\/06\/05_wp_settings-768x349.webp 768w, https:\/\/www-dev.dreamhost.com\/blog\/wp-content\/uploads\/2024\/06\/05_wp_settings-1536x699.webp 1536w, https:\/\/www-dev.dreamhost.com\/blog\/wp-content\/uploads\/2024\/06\/05_wp_settings-600x273.webp 600w, https:\/\/www-dev.dreamhost.com\/blog\/wp-content\/uploads\/2024\/06\/05_wp_settings-1200x546.webp 1200w, https:\/\/www-dev.dreamhost.com\/blog\/wp-content\/uploads\/2024\/06\/05_wp_settings-730x332.webp 730w, https:\/\/www-dev.dreamhost.com\/blog\/wp-content\/uploads\/2024\/06\/05_wp_settings-1460x664.webp 1460w, https:\/\/www-dev.dreamhost.com\/blog\/wp-content\/uploads\/2024\/06\/05_wp_settings-784x357.webp 784w, https:\/\/www-dev.dreamhost.com\/blog\/wp-content\/uploads\/2024\/06\/05_wp_settings-1568x713.webp 1568w, https:\/\/www-dev.dreamhost.com\/blog\/wp-content\/uploads\/2024\/06\/05_wp_settings-877x399.webp 877w\" data-sizes=\"(max-width: 1600px) 100vw, 1600px\" src=\"data:image\/svg+xml;base64,PHN2ZyB3aWR0aD0iMSIgaGVpZ2h0PSIxIiB4bWxucz0iaHR0cDovL3d3dy53My5vcmcvMjAwMC9zdmciPjwvc3ZnPg==\" style=\"--smush-placeholder-width: 1600px; --smush-placeholder-aspect-ratio: 1600\/728;\" \/><\/figure>\n<p>Aqui, voc\u00ea deve ver v\u00e1rias instru\u00e7\u00f5es, incluindo algumas que aconselham voc\u00ea a configurar seu firewall e fazer backup do seu site.<\/p>\n<figure class=\"wp-block-image size-full\"><img decoding=\"async\" width=\"1600\" height=\"674\" data-src=\"https:\/\/www.dreamhost.com\/blog\/wp-content\/uploads\/2024\/06\/06_set_up_firewall.webp\" alt=\"A caixa de configura\u00e7\u00f5es apresenta o 'All In One WP Security and Firewall.' Clique no bot\u00e3o azul para 'Comece Agora.'\" class=\"wp-image-47617 lazyload\" data-srcset=\"https:\/\/www-dev.dreamhost.com\/blog\/wp-content\/uploads\/2024\/06\/06_set_up_firewall.webp 1600w, https:\/\/www-dev.dreamhost.com\/blog\/wp-content\/uploads\/2024\/06\/06_set_up_firewall-300x126.webp 300w, https:\/\/www-dev.dreamhost.com\/blog\/wp-content\/uploads\/2024\/06\/06_set_up_firewall-1024x431.webp 1024w, https:\/\/www-dev.dreamhost.com\/blog\/wp-content\/uploads\/2024\/06\/06_set_up_firewall-768x324.webp 768w, https:\/\/www-dev.dreamhost.com\/blog\/wp-content\/uploads\/2024\/06\/06_set_up_firewall-1536x647.webp 1536w, https:\/\/www-dev.dreamhost.com\/blog\/wp-content\/uploads\/2024\/06\/06_set_up_firewall-600x253.webp 600w, https:\/\/www-dev.dreamhost.com\/blog\/wp-content\/uploads\/2024\/06\/06_set_up_firewall-1200x506.webp 1200w, https:\/\/www-dev.dreamhost.com\/blog\/wp-content\/uploads\/2024\/06\/06_set_up_firewall-730x308.webp 730w, https:\/\/www-dev.dreamhost.com\/blog\/wp-content\/uploads\/2024\/06\/06_set_up_firewall-1460x615.webp 1460w, https:\/\/www-dev.dreamhost.com\/blog\/wp-content\/uploads\/2024\/06\/06_set_up_firewall-784x330.webp 784w, https:\/\/www-dev.dreamhost.com\/blog\/wp-content\/uploads\/2024\/06\/06_set_up_firewall-1568x661.webp 1568w, https:\/\/www-dev.dreamhost.com\/blog\/wp-content\/uploads\/2024\/06\/06_set_up_firewall-877x369.webp 877w\" data-sizes=\"(max-width: 1600px) 100vw, 1600px\" src=\"data:image\/svg+xml;base64,PHN2ZyB3aWR0aD0iMSIgaGVpZ2h0PSIxIiB4bWxucz0iaHR0cDovL3d3dy53My5vcmcvMjAwMC9zdmciPjwvc3ZnPg==\" style=\"--smush-placeholder-width: 1600px; --smush-placeholder-aspect-ratio: 1600\/674;\" \/><\/figure>\n<p>Recomendamos fazer backup do seu site clicando em cada link e seguindo as instru\u00e7\u00f5es. Depois, clique no bot\u00e3o <strong>Comece Agora<\/strong> e seu firewall estar\u00e1 ativado.<\/p>\n<p>Finalmente, clique em cada aba para garantir que tudo est\u00e1 configurado ao seu gosto. No momento em que este texto foi escrito, as configura\u00e7\u00f5es padr\u00e3o (autentica\u00e7\u00e3o de dois fatores, etc.) s\u00e3o um \u00f3timo ponto de partida.<\/p>\n<figure class=\"wp-block-image size-full\"><img decoding=\"async\" width=\"1600\" height=\"389\" data-src=\"https:\/\/www.dreamhost.com\/blog\/wp-content\/uploads\/2024\/06\/07_two_factor_authentication_on.webp\" alt=\"Existem oito abas de configura\u00e7\u00f5es para dar controle sobre sua seguran\u00e7a\" class=\"wp-image-47619 lazyload\" data-srcset=\"https:\/\/www-dev.dreamhost.com\/blog\/wp-content\/uploads\/2024\/06\/07_two_factor_authentication_on.webp 1600w, https:\/\/www-dev.dreamhost.com\/blog\/wp-content\/uploads\/2024\/06\/07_two_factor_authentication_on-300x73.webp 300w, https:\/\/www-dev.dreamhost.com\/blog\/wp-content\/uploads\/2024\/06\/07_two_factor_authentication_on-1024x249.webp 1024w, https:\/\/www-dev.dreamhost.com\/blog\/wp-content\/uploads\/2024\/06\/07_two_factor_authentication_on-768x187.webp 768w, https:\/\/www-dev.dreamhost.com\/blog\/wp-content\/uploads\/2024\/06\/07_two_factor_authentication_on-1536x373.webp 1536w, https:\/\/www-dev.dreamhost.com\/blog\/wp-content\/uploads\/2024\/06\/07_two_factor_authentication_on-600x146.webp 600w, https:\/\/www-dev.dreamhost.com\/blog\/wp-content\/uploads\/2024\/06\/07_two_factor_authentication_on-1200x292.webp 1200w, https:\/\/www-dev.dreamhost.com\/blog\/wp-content\/uploads\/2024\/06\/07_two_factor_authentication_on-730x177.webp 730w, https:\/\/www-dev.dreamhost.com\/blog\/wp-content\/uploads\/2024\/06\/07_two_factor_authentication_on-1460x355.webp 1460w, https:\/\/www-dev.dreamhost.com\/blog\/wp-content\/uploads\/2024\/06\/07_two_factor_authentication_on-784x191.webp 784w, https:\/\/www-dev.dreamhost.com\/blog\/wp-content\/uploads\/2024\/06\/07_two_factor_authentication_on-1568x381.webp 1568w, https:\/\/www-dev.dreamhost.com\/blog\/wp-content\/uploads\/2024\/06\/07_two_factor_authentication_on-877x213.webp 877w\" data-sizes=\"(max-width: 1600px) 100vw, 1600px\" src=\"data:image\/svg+xml;base64,PHN2ZyB3aWR0aD0iMSIgaGVpZ2h0PSIxIiB4bWxucz0iaHR0cDovL3d3dy53My5vcmcvMjAwMC9zdmciPjwvc3ZnPg==\" style=\"--smush-placeholder-width: 1600px; --smush-placeholder-aspect-ratio: 1600\/389;\" \/><\/figure>\n<h2 id=\"h2_take-application-security-to-another-level-with-dreamshield\" class=\"wp-block-heading\">Eleve a Seguran\u00e7a de Aplicativos a Outro N\u00edvel com DreamShield<\/h2>\n<p>Desde sua concep\u00e7\u00e3o inicial nos anos 90, os WAFs t\u00eam instaurado e protegido a tranquilidade de propriet\u00e1rios e construtores de aplicativos web que buscam ref\u00fagio dos maus atores do mundo.<\/p>\n<p>Agora, voc\u00ea pode aproveitar a mesma cobertura seguindo um processo relativamente simples em seu site WordPress.<\/p>\n<p>Conseguiu isso e deseja atualizar ainda mais a seguran\u00e7a do seu WordPress?<\/p>\n<p>Ent\u00e3o voc\u00ea \u00e9 um \u00f3timo candidato para <a href=\"https:\/\/www.dreamhost.com\/pt\/produtos\/dreamshield\/\" target=\"_blank\" rel=\"noreferrer noopener\">DreamShield<\/a>.<\/p>\n<p>DreamShield identifica e desativa a maioria das amea\u00e7as, verifica automaticamente seu site em busca de problemas <em>todos os dias<\/em>, bloqueia Malware e mant\u00e9m voc\u00ea atualizado sobre a sa\u00fade do seu site.<\/p>\n<p>Se o seu site est\u00e1 sofrendo de um mal desconhecido ou suspeito que voc\u00ea n\u00e3o consegue resolver, entre em contato com nossa equipe de <a href=\"https:\/\/www.dreamhost.com\/pt\/suporte\/\" target=\"_blank\" rel=\"noreferrer noopener\">suporte<\/a> inteligente e confi\u00e1vel, e n\u00f3s o ajudaremos a resolver isso.<\/p>\n\n\n<div class=\"article-cta-shared article-cta-small article-cta--product\">\n\t<div class=\"tr-img-wrap-outer jsLoading\"><img decoding=\"async\" class=\"js-img-lazy \" src=\"https:\/\/www-dev.dreamhost.com\/blog\/wp-content\/themes\/blog2018\/assets\/img\/lazy-loading-transparent.webp\" data-srcset=\"https:\/\/www-dev.dreamhost.com\/blog\/wp-content\/uploads\/2024\/03\/product-cta-pro-services-website-management-877x586.webp 1x, https:\/\/www-dev.dreamhost.com\/blog\/wp-content\/uploads\/2024\/03\/product-cta-pro-services-website-management.webp 2x\"  \/><\/div>\n\n\t<a href='https:\/\/www.dreamhost.com\/pro-services\/management\/' class='link-top' target='_blank' rel='noopener noreferrer'>\n\t\t<span>Pro Services &#8211; Website Management<\/span>\n\t\t<svg xmlns=\"http:\/\/www.w3.org\/2000\/svg\" viewBox=\"0 0 384 512\" width=\"15\"><path d=\"M342.6 233.4c12.5 12.5 12.5 32.8 0 45.3l-192 192c-12.5 12.5-32.8 12.5-45.3 0s-12.5-32.8 0-45.3L274.7 256 105.4 86.6c-12.5-12.5-12.5-32.8 0-45.3s32.8-12.5 45.3 0l192 192z\"\/><\/svg>\n\t<\/a>\n\n\t<div class=\"content-btm\">\n\t\t<h2 class=\"h2--md\">\n\t\t\tWe&#8217;ll Handle the Technical Stuff\n\t\t<\/h2>\n\t\t<p class=\"p--md\">\n\t\t\tBring enterprise-grade performance and reliability to your website. Leave the backend to the experts \u2013 you focus on your business.\n\t\t<\/p>\n\n\t\t        <a\n            href=\"https:\/\/www.dreamhost.com\/pro-services\/management\/\"\n                        class=\"btn btn--white-outline btn--sm btn--round\"\n                                    target=\"_blank\"\n            rel=\"noopener noreferrer\"\n            >\n                            See More                    <\/a>\n\n\t<\/div>\n<\/div>","protected":false},"excerpt":{"rendered":"<p>Quer aprender os conceitos b\u00e1sicos de Firewalls de Aplicativos Web e como instal\u00e1-los para aumentar a seguran\u00e7a do seu site? Nosso guia completo ir\u00e1 mostrar como configurar os WAFs.<\/p>\n","protected":false},"author":1036,"featured_media":47595,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"_yoast_wpseo_metadesc":"","toc_headlines":"[[\"h-what-is-a-web-application-firewall-waf\",\"O que \u00e9 um Firewall de Aplica\u00e7\u00e3o Web (WAF)?\"],[\"h2_how-waf-technology-protects-web-applications\",\"Como a Tecnologia WAF Protege Aplica\u00e7\u00f5es Web\"],[\"h2_the-3-types-of-web-application-firewalls\",\"Os 3 Tipos de Firewalls para Aplica\u00e7\u00f5es Web\"],[\"h2_why-use-a-web-app-firewall\",\"Por que usar um Firewall de Aplicativo Web?\"],[\"h2_how-to-install-a-waf-using-wordpress-in-3-steps\",\"Como Instalar um WAF Usando WordPress em 3 Passos\"],[\"h2_take-application-security-to-another-level-with-dreamshield\",\"Eleve a Seguran\u00e7a de Aplicativos a Outro N\u00edvel com DreamShield\"]]","hide_toc":false,"footnotes":""},"categories":[14393,14391],"tags":[],"class_list":["post-52907","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-hosting-web-pt","category-tutoriais-pt"],"acf":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO Premium plugin v26.3 (Yoast SEO v27.4) - https:\/\/yoast.com\/product\/yoast-seo-premium-wordpress\/ -->\n<title>Firewall de Aplica\u00e7\u00e3o Web (WAF): O Que \u00c9 e Como Us\u00e1-lo - DreamHost Blog<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www-dev.dreamhost.com\/blog\/pt\/firewall-de-aplicacao-web\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Firewall de Aplica\u00e7\u00e3o Web (WAF): O Que \u00c9 e Como Us\u00e1-lo\" \/>\n<meta property=\"og:description\" content=\"Quer aprender os conceitos b\u00e1sicos de Firewalls de Aplicativos Web e como instal\u00e1-los para aumentar a seguran\u00e7a do seu site? Nosso guia completo ir\u00e1 mostrar como configurar os WAFs.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www-dev.dreamhost.com\/blog\/pt\/firewall-de-aplicacao-web\/\" \/>\n<meta property=\"og:site_name\" content=\"DreamHost Blog\" \/>\n<meta property=\"article:publisher\" content=\"https:\/\/www.facebook.com\/DreamHost\/\" \/>\n<meta property=\"article:published_time\" content=\"2024-07-01T14:00:00+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2025-05-26T19:42:15+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.dreamhost.com\/blog\/wp-content\/uploads\/2024\/07\/1460x1095_blog_hero_what_a_web_application_firewall_waf_is_and_how_to_install_one.webp\" \/>\n\t<meta property=\"og:image:width\" content=\"1460\" \/>\n\t<meta property=\"og:image:height\" content=\"1095\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/webp\" \/>\n<meta name=\"author\" content=\"Luke Odom\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@dreamhost\" \/>\n<meta name=\"twitter:site\" content=\"@dreamhost\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Luke Odom\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"12 minutes\" \/>\n<!-- \/ Yoast SEO Premium plugin. -->","yoast_head_json":{"title":"Firewall de Aplica\u00e7\u00e3o Web (WAF): O Que \u00c9 e Como Us\u00e1-lo - DreamHost Blog","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www-dev.dreamhost.com\/blog\/pt\/firewall-de-aplicacao-web\/","og_locale":"en_US","og_type":"article","og_title":"Firewall de Aplica\u00e7\u00e3o Web (WAF): O Que \u00c9 e Como Us\u00e1-lo","og_description":"Quer aprender os conceitos b\u00e1sicos de Firewalls de Aplicativos Web e como instal\u00e1-los para aumentar a seguran\u00e7a do seu site? Nosso guia completo ir\u00e1 mostrar como configurar os WAFs.","og_url":"https:\/\/www-dev.dreamhost.com\/blog\/pt\/firewall-de-aplicacao-web\/","og_site_name":"DreamHost Blog","article_publisher":"https:\/\/www.facebook.com\/DreamHost\/","article_published_time":"2024-07-01T14:00:00+00:00","article_modified_time":"2025-05-26T19:42:15+00:00","og_image":[{"width":1460,"height":1095,"url":"https:\/\/www.dreamhost.com\/blog\/wp-content\/uploads\/2024\/07\/1460x1095_blog_hero_what_a_web_application_firewall_waf_is_and_how_to_install_one.webp","type":"image\/webp"}],"author":"Luke Odom","twitter_card":"summary_large_image","twitter_creator":"@dreamhost","twitter_site":"@dreamhost","twitter_misc":{"Written by":"Luke Odom","Est. reading time":"12 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www-dev.dreamhost.com\/blog\/pt\/firewall-de-aplicacao-web\/#article","isPartOf":{"@id":"https:\/\/www-dev.dreamhost.com\/blog\/pt\/firewall-de-aplicacao-web\/"},"author":{"name":"Luke Odom","@id":"https:\/\/www-dev.dreamhost.com\/blog\/#\/schema\/person\/89b848f30904144bdbed4743605a55db"},"headline":"Firewall de Aplica\u00e7\u00e3o Web (WAF): O Que \u00c9 e Como Us\u00e1-lo","datePublished":"2024-07-01T14:00:00+00:00","dateModified":"2025-05-26T19:42:15+00:00","mainEntityOfPage":{"@id":"https:\/\/www-dev.dreamhost.com\/blog\/pt\/firewall-de-aplicacao-web\/"},"wordCount":2344,"publisher":{"@id":"https:\/\/www-dev.dreamhost.com\/blog\/#organization"},"image":{"@id":"https:\/\/www-dev.dreamhost.com\/blog\/pt\/firewall-de-aplicacao-web\/#primaryimage"},"thumbnailUrl":"https:\/\/www-dev.dreamhost.com\/blog\/wp-content\/uploads\/2024\/07\/1460x1095_blog_hero_what_a_web_application_firewall_waf_is_and_how_to_install_one.webp","articleSection":["Hosting Web","Tutoriais"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/www-dev.dreamhost.com\/blog\/pt\/firewall-de-aplicacao-web\/","url":"https:\/\/www-dev.dreamhost.com\/blog\/pt\/firewall-de-aplicacao-web\/","name":"Firewall de Aplica\u00e7\u00e3o Web (WAF): O Que \u00c9 e Como Us\u00e1-lo - DreamHost Blog","isPartOf":{"@id":"https:\/\/www-dev.dreamhost.com\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www-dev.dreamhost.com\/blog\/pt\/firewall-de-aplicacao-web\/#primaryimage"},"image":{"@id":"https:\/\/www-dev.dreamhost.com\/blog\/pt\/firewall-de-aplicacao-web\/#primaryimage"},"thumbnailUrl":"https:\/\/www-dev.dreamhost.com\/blog\/wp-content\/uploads\/2024\/07\/1460x1095_blog_hero_what_a_web_application_firewall_waf_is_and_how_to_install_one.webp","datePublished":"2024-07-01T14:00:00+00:00","dateModified":"2025-05-26T19:42:15+00:00","breadcrumb":{"@id":"https:\/\/www-dev.dreamhost.com\/blog\/pt\/firewall-de-aplicacao-web\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www-dev.dreamhost.com\/blog\/pt\/firewall-de-aplicacao-web\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www-dev.dreamhost.com\/blog\/pt\/firewall-de-aplicacao-web\/#primaryimage","url":"https:\/\/www-dev.dreamhost.com\/blog\/wp-content\/uploads\/2024\/07\/1460x1095_blog_hero_what_a_web_application_firewall_waf_is_and_how_to_install_one.webp","contentUrl":"https:\/\/www-dev.dreamhost.com\/blog\/wp-content\/uploads\/2024\/07\/1460x1095_blog_hero_what_a_web_application_firewall_waf_is_and_how_to_install_one.webp","width":1460,"height":1095,"caption":"Web Application Firewall (WAF): What It Is And How To Use It"},{"@type":"BreadcrumbList","@id":"https:\/\/www-dev.dreamhost.com\/blog\/pt\/firewall-de-aplicacao-web\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/dhblog.dream.press\/blog\/"},{"@type":"ListItem","position":2,"name":"Firewall de Aplica\u00e7\u00e3o Web (WAF): O Que \u00c9 e Como Us\u00e1-lo"}]},{"@type":"WebSite","@id":"https:\/\/www-dev.dreamhost.com\/blog\/#website","url":"https:\/\/www-dev.dreamhost.com\/blog\/","name":"DreamHost Blog","description":"","publisher":{"@id":"https:\/\/www-dev.dreamhost.com\/blog\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www-dev.dreamhost.com\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www-dev.dreamhost.com\/blog\/#organization","name":"DreamHost","url":"https:\/\/www-dev.dreamhost.com\/blog\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www-dev.dreamhost.com\/blog\/#\/schema\/logo\/image\/","url":"https:\/\/dhblog.dream.press\/blog\/wp-content\/uploads\/2019\/01\/dh_logo-blue-2.png","contentUrl":"https:\/\/dhblog.dream.press\/blog\/wp-content\/uploads\/2019\/01\/dh_logo-blue-2.png","width":1200,"height":168,"caption":"DreamHost"},"image":{"@id":"https:\/\/www-dev.dreamhost.com\/blog\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/www.facebook.com\/DreamHost\/","https:\/\/x.com\/dreamhost","https:\/\/www.instagram.com\/dreamhost\/","https:\/\/www.linkedin.com\/company\/dreamhost\/","https:\/\/www.youtube.com\/user\/dreamhostusa"]},{"@type":"Person","@id":"https:\/\/www-dev.dreamhost.com\/blog\/#\/schema\/person\/89b848f30904144bdbed4743605a55db","name":"Luke Odom","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secure.gravatar.com\/avatar\/c56e64d8cecd561c4e2cb65fc16717105fc6d29044bbd8c78cbd4619a31e7098?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/c56e64d8cecd561c4e2cb65fc16717105fc6d29044bbd8c78cbd4619a31e7098?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/c56e64d8cecd561c4e2cb65fc16717105fc6d29044bbd8c78cbd4619a31e7098?s=96&d=mm&r=g","caption":"Luke Odom"},"description":"Luke is the Director of IT Operations. He is responsible for the teams that keep operations running smoothly... In his free time, he enjoys reading fantasy\/sci-fi and hanging out with his wife and 4 kids. Connect with Luke on LinkedIn: https:\/\/www.linkedin.com\/in\/luke-odom-039986a\/","url":"https:\/\/www-dev.dreamhost.com\/blog\/author\/dreamhostluke\/"}]}},"lang":"pt","translations":{"pt":52907,"es":47625,"en":47592,"de":55459,"ru":55465,"pl":55501,"uk":55594,"it":68569,"fr":70732,"nl":70758},"pll_sync_post":[],"_links":{"self":[{"href":"https:\/\/www-dev.dreamhost.com\/blog\/wp-json\/wp\/v2\/posts\/52907","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www-dev.dreamhost.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www-dev.dreamhost.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www-dev.dreamhost.com\/blog\/wp-json\/wp\/v2\/users\/1036"}],"replies":[{"embeddable":true,"href":"https:\/\/www-dev.dreamhost.com\/blog\/wp-json\/wp\/v2\/comments?post=52907"}],"version-history":[{"count":3,"href":"https:\/\/www-dev.dreamhost.com\/blog\/wp-json\/wp\/v2\/posts\/52907\/revisions"}],"predecessor-version":[{"id":59443,"href":"https:\/\/www-dev.dreamhost.com\/blog\/wp-json\/wp\/v2\/posts\/52907\/revisions\/59443"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www-dev.dreamhost.com\/blog\/wp-json\/wp\/v2\/media\/47595"}],"wp:attachment":[{"href":"https:\/\/www-dev.dreamhost.com\/blog\/wp-json\/wp\/v2\/media?parent=52907"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www-dev.dreamhost.com\/blog\/wp-json\/wp\/v2\/categories?post=52907"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www-dev.dreamhost.com\/blog\/wp-json\/wp\/v2\/tags?post=52907"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}