https://docs.webscale.com/docs/explanation/Recent content in Explanation on Webscale Product DocumentationHugoenhttps://docs.webscale.com/docs/explanation/explanation-about-bot-attacks-commerce-sites/Mon, 01 Jan 0001 00:00:00 +0000https://docs.webscale.com/docs/explanation/explanation-about-bot-attacks-commerce-sites/<h2 id="what-attackers-are-trying-to-do">What attackers are trying to do</h2> <p>Most attacks we see on commerce sites are <strong>profit-driven</strong>, not purely destructive.</p> <p>Broadly, attackers want to:</p> <ul> <li><strong>Test stolen payment cards</strong> to see which ones are still valid (carding).</li> <li><strong>Abuse business logic</strong> such as coupons, loyalty points, or free-trial flows.</li> <li><strong>Harvest data</strong> from product catalogs or customer accounts.</li> </ul> <p>The goal is nearly always to turn someone else’s infrastructure and payment flows into <strong>cheap testing infrastructure</strong> for stolen data.</p>https://docs.webscale.com/docs/explanation/explanation-security-stance-on-unbuntu-package-versions/Mon, 01 Jan 0001 00:00:00 +0000https://docs.webscale.com/docs/explanation/explanation-security-stance-on-unbuntu-package-versions/<h2 id="introduction"><strong>Introduction</strong></h2> <p>At Webscale, we prioritize the long-term stability and security of our customer environments. A frequent question arises: <em>&ldquo;Why is Webscale using an older version of Nginx instead of the latest mainline release?&rdquo;</em> To understand our stance, one must understand the trade-off between <strong>feature velocity</strong> and <strong>proven stability</strong>, and how the Linux ecosystem manages security through a process called &ldquo;Backporting.&rdquo;</p> <h2 id="the"><strong>The &ldquo;Latest&rdquo; vs. &ldquo;Secure&rdquo; Myth</strong></h2> <p>In the world of consumer software (like phone apps), a higher version number almost always means better security. In enterprise server infrastructure, this isn&rsquo;t always the case.</p>