Apache provides many features that can be used to either compromise server security or gather information about a server that the administrator would prefer kept secret. Of course, these features aren't there to create security holes, but the more complex the configuration, the more chances there are of creating an unanticipated use of the server. Understanding what is, and what is not, expected behavior is essential, both when creating the server configuration and detecting possible misuse. There is no such thing as a totally one hundred percent secure server. In this book we delve into crucial aspects of Apache security, and practical ways of setting up a safer, more secure implementation of an Apache server. This book is a tutorial, a resource, and a reference for Apache administrators, security analysts, web developers, and system architects, who want to secure Apache on UNIX and its variant platforms.
Table of ContentsChapter 1: Installation
Chapter 2: Secure administration
Chapter 3: HTTP Security and Cross?Site Scripting Attacks
Chapter 4: Authentication and Authorization
Chapter 5: System Security
Chapter 6: Apache in Jail
Chapter 7: DoS Attacks
Chapter 8: Cookies
Chapter 9: CGI Security
Chapter 10: Logging
Chapter 11: Session Tracking
Chapter 12: Apache and Cryptography
Chapter 13: SSL and Apache
Chapter 14: Case Study: Setting up a Secure Apache Server for an E-commerce Site
Most Helpful Customer Reviews
Professional Apache Security based on 0 ratings. 1 reviews.
Be careful where ordering I ordered this book when it was listed at $39.99, it seems they changed the prices to $49.99 when I was checking out and I was charged the higher price. Always save the page with the prices before ordering.