Hardening Apache

A must-read for any system administrator installing or currently using Apache, Hardening Apache shows you exactly what to do to make Apache more secure. Throughout this book, renowned author Tony Mobily introduces you to many of the security problems youll inevitably stumble across when using Apache—and most important, youll learn how to protect yourself and your server.

Mobily provides in-depth instruction on the safe installation and configuration of Apache and gives detailed guidance on tightening the security of your existing Apache installation. This comprehensive book covers a wide variety of the most important issues, including common attacks, logging, downloading, administration, cross-site scripting attacks, and web-related RFC details. The book also delves into many of the more advanced system administration techniques including “jailing” Apache and securing third-party modules.

Table of Contents

1. Secure Installation and Configuration
2. Common Attacks
3. Logging
4. Cross-Site Scripting Attacks
5. Apache Security Modules
6. Apache in Jail
7. Automating Security

This is a book which should definitely be included in any serious Apache administrator's bookshelf.

— Gianluca, Slashdot contributor

The book walks intuitively through the setup process, from download and verification, to configuration and modifications, to running in production mode.

— Blane Warrene, Expert Columnist, SitePoint.com

This book can save you pain, humiliation, and hair loss.

— Mitchell Pirtle, International PHP Magazine

A must-read for any system administrator installing or currently using Apache, Hardening Apache shows you exactly what to do to make Apache more secure. Throughout this book, renowned author Tony Mobily introduces you to many of the security problems youll inevitably stumble across when using Apache---and most important, youll learn how to protect yourself and your server.

Mobily provides in-depth instruction on the safe installation and configuration of Apache and gives detailed guidance on tightening the security of your existing Apache installation. This comprehensive book covers a wide variety of the most important issues, including common attacks, logging, downloading, administration, cross-site scripting attacks, and web-related RFC details. The book also delves into many of the more advanced system administration techniques including "jailing" Apache and securing third-party modules.

When he is not talking about himself in the third person, Tony Mobily is an ordinary human being, enjoying his life in the best city in the world: Perth (western Australia). He is a senior system administrator and security expert, and manages the Italian computer magazine Login, working daily with many Internet technologies. (He loves Linux, Apache, Perl, C, and Bash.)

Tony is also trained in classical ballet (ISTD, RAD), jazz (ISDT), and singing. He is working to obtain format teaching qualifications in these disciplines. He also writes short and long stories, and practices Buddhism (Karma Kagyu lineage) and meditation. His website is http://www.mobily.com.