New Solution: Create a “secure” Linux web server
Please navigate to the project pages via the top menu: Technology Solutions: Create a “secure” Linux web server; I currently don’t have a ToC or easy to navigate page links.
This solution provides an apache/httpd server with PHP 5.3.0 on a RHEL system that utilizes the following products for protection:
iptables (“here’s a good policy stack. X.”)
mod_security (and the SpiderLab’s OWASP customer rule set/CSR.)
mod_evasive (yes, built for apache 2.4.x, because, grep.)
samhain (this sucker is fantastically intricate and awesome.)
I also include some hardening advice for sshd, httpd, and php.