Hardening Apache

Front Cover
Apress, Apr 26, 2004 - Computers - 296 pages

A must-read for any system administrator installing or currently using Apache, Hardening Apache shows you exactly what to do to make Apache more secure. Throughout this book, renowned author Tony Mobily introduces you to many of the security problems youll inevitably stumble across when using Apache—and most important, youll learn how to protect yourself and your server.

Mobily provides in-depth instruction on the safe installation and configuration of Apache and gives detailed guidance on tightening the security of your existing Apache installation. This comprehensive book covers a wide variety of the most important issues, including common attacks, logging, downloading, administration, cross-site scripting attacks, and web-related RFC details. The book also delves into many of the more advanced system administration techniques including “jailing” Apache and securing third-party modules.

 

What people are saying - Write a review

We haven't found any reviews in the usual places.

Contents

Secure Installation and Configuration l
1
Installing Apache
10
Secure Configuration
19
Blocking Access to Your Site
28
Checkpoints
40
Common Attacks
41
Checkpoints
54
Logging
55
mod_bandwidth
125
mod_parmguard
148
mod_hackprotect and mod_hackdetect
167
Apache in Jail
179
Apache in Jail
183
Making PHP Work
197
Automating Security
203
Running the Scripts Automatically
233

Reading the Log Files
61
Checkpoints
83
CrossSite Scripting Attacks
85
Apache and XSS
92
How to Prevent XSS
95
Apache Security Modules
99
Appendix A Apache Resources
237
Appendix B HTTP and Apache
241
Conclusions
254
Chapter Checkpoints
255
Index
259
Copyright

Other editions - View all

Common terms and phrases

About the author (2004)

When he is not talking about himself in the third person, Tony Mobily is an ordinary human being, enjoying his life in the best city in the world: Perth (western Australia). He is a senior system administrator and security expert, and manages the Italian computer magazine Login, working daily with many Internet technologies. (He loves Linux, Apache, Perl, C, and Bash.) Tony is also trained in classical ballet (ISTD, RAD), jazz (ISDT), and singing. He is working to obtain format teaching qualifications in these disciplines. He also writes short and long stories, and practices Buddhism (Karma Kagyu lineage) and meditation. His website is http://www.mobily.com.

Bibliographic information