Create a “secure” Linux web server

This solution provides an apache/httpd server with PHP 5.3.0 on a RHEL system that utilizes the following products for protection:

iptables (“here’s a good policy stack. X.”)
mod_security (and the SpiderLab’s OWASP customer rule set/CSR.)
mod_evasive (yes, built for apache 2.4.x, because, grep.)
fail2ban (yep)
samhain (this sucker is fantastically intricate and awesome.)

I also include some hardening advice for sshd, httpd, and php.

Here is a list of web pages I referenced during the entire thing:
  1. No comments yet.
  1. No trackbacks yet.

Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

%d bloggers like this: