Create a “secure” Linux web server

This solution provides an apache/httpd server with PHP 5.3.0 on a RHEL system that utilizes the following products for protection:

iptables (“here’s a good policy stack. X.”)
mod_security (and the SpiderLab’s OWASP customer rule set/CSR.)
mod_evasive (yes, built for apache 2.4.x, because, grep.)
fail2ban (yep)
samhain (this sucker is fantastically intricate and awesome.)

I also include some hardening advice for sshd, httpd, and php.

Here is a list of web pages I referenced during the entire thing:
  1. Peter
    August 7, 2017 at 1:05 pm

    This is the header for a series of pages. It would be useful if the pages had “Next” and “Previous” links, so that the reader could go through the pages easily, instead of going through the ToC links.

    • August 7, 2017 at 1:15 pm

      Thanks for your comment. Agreed. I have to do this manually and have done it on other “solutions” pages. I’m not sure if I’ll have time to do it on here. The “solution” hasn’t been touched in a long time and is generally incomplete anyway.

  1. No trackbacks yet.

Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

%d bloggers like this: