| |
Apache has seized an unchallenged superiority over other web servers. Its strength lies in its modular, scalable, robust architecture. Today the Apache server manages 66% of the all webbased Internet traffic, which means that any breach in Apache security directly affects the majority of the web servers deployed worldwide!Powerful web servers like Apache have many complex features that make security a challenging task. Furthermore, the growth in ecommerce has also brought the realization that reputation damage from a security breach is one of the fastest ways to erode customer and industry trust.This book provides an indepth discussion on how to secure Apache. It provides comprehensive information on planning and implementing security at protocol, application and system levels. In addition, this book provides an overview of strategic defense against would be crackers.Who is this book for?This book is a tutorial, a resource, and a reference for Apache administrators, security analysts, web developers and system architects, who want to secure Apache on UNIX and its variant platforms.What does this book cover?Overview of a secure Apache installation and configuration processDissection of the effects of HTTP and URL on server securityCoverage of authentication and authorizationSecurity at protocol, application, and system levelUse of chrooting, CGI scripts, logging, and session tracking Coverage of DoS attacks, cookies, and cryptographyImplementation and use of SSL to enable security at the transport layer
|
| |
|