Apache web server security hardening

Andrew Carr (17.Oct.2018 at 10:15, 1 hr )
Talk at ZendCon & OpenEnterprise 2018 (English - US)

Rating: 4 of 5

Last year, I discussed hardening Apache Web server with Apache Tomcat behind it. There was a lot of interest in hardening Apache and recommendations. We will review possible exploits and how proper mitigation can prevent breaches. Apache has a lot of security holes, especially in older versions. While upgrading fixes a lot of problems, there will always be exploits. We want to demonstrate a system that is reliable and robust, with the least amount of information exposed to the public. Additionally, there will be a review of some standard configurations you can build from to protect your environment.

Who are you?

Claim talk

Talk claims have been moved to the new Joind.in site.

Please login to the new site to claim your talk

Want to comment on this talk? Log in or create a new account or comment anonymously

Write a comment

 
Please note: you are not logged in and will be posting anonymously!
= two plus eight

Comments

Rating: 4 of 5

19.Oct.2018 at 11:06 by Ben Roberts (7 comments) via Web2 LIVE

Andrew's session was a realistic, practical and useful look at securely configuring Apache Web server, particularly as it relates to the LA[M]P stack. Thanks! Hope the slides get posted soon.

© Joind.in 2018