Mon premier blog

Hardening Apache Tony Mobily
Publisher:

Actually OS hardening part is begins before system Disable services like RPC based services,NFS,NIS, Sendmail,Apache,SNMP,printer services and internet based services if no longer used in server. There is good doco for deploying django on apache with mod_python or wsgi. Below are some of the tricks I use or found useful to try to mitigate unwanted attention. Nice step by step manual on how to harden Apache web server by PaulDotCom (if those guys could only burp a bit less ). I'd start by reviewing PCI compliance ( http://en.wikipedia.org/wiki/PCI_Compliance - standards for processing payments online ) requirements for apache and work on getting your apache PCI compliant first. Here we will see some basic Hardening steps for So Before server is bringing to operation/production, hardening check list needs to be verified by support team who supports the server. Attack it with Nikto, harden it, then attack again. Linux kernel hardening The kernel is the most frequent target for attackers. Having access to the kernel is the easiest way to escalate users' privileges. Current user audit(password check). Whilst this is not a definitive guide these are simple quick things that can be done. How can we tighten the system security ? Here are a couple of extra tips for Ubuntu. Here are a few things you should consider doing immediately after installing and configuring Apache. Not to be confused with an Apache hardening guide, this is just a list of three (3) minimums.