Home > Uncategorized > New Solution: Create a “secure” Linux web server

New Solution: Create a “secure” Linux web server

Please navigate to the project pages via the top menu: Technology Solutions: Create a “secure” Linux web server; I currently don’t have a ToC or easy to navigate page links.

This solution provides an apache/httpd server with PHP 5.3.0 on a RHEL system that utilizes the following products for protection:

iptables (“here’s a good policy stack. X.”)
mod_security (and the SpiderLab’s OWASP customer rule set/CSR.)
mod_evasive (yes, built for apache 2.4.x, because, grep.)
fail2ban (yep)
samhain (this sucker is fantastically intricate and awesome.)

I also include some hardening advice for sshd, httpd, and php.

Advertisements
  1. No comments yet.
  1. No trackbacks yet.

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

%d bloggers like this: