Net-Security.org: Installation of a Secure Web Server

LogError writes:

"Web servers are the most exposed servers on the Internet. In order for clients/ target groups to be able to access the information provided, web servers must be accessible from any point on the Internet. In contrast to other public services like DNS and FTP, the Web is especially tempting for "Crackers": a succesful "hack" of a system can be visualized by changing the appearance of the home page to increase awareness of the hacker's presence. Such an occurence can lead to a significant loss of confidence for a company - and this even more so if sensitive information like credit card details etc. are filched or even published.

Apart from firewalls, which aim at protecting internal networks against attacks from the internet, web servers are the second important field requiring a high degree of security. This article shows how this can be done on a Linux system within just 45 minutes. Of course, the same can also be done on other operating systems. Below is an example based on the SuSE Linux 6.4 distributions.

The paper is located here."

Related Stories:

• NewsForge: Engarde Secure Linux(Jun 18, 2001)
• ISPworld: The Web Server First Aid Kit - Handy Tools for When All Hell Breaks Loose(Mar 25, 2001)
• LinuxToday.com.au: Consider Apache(Mar 05, 2001)
• Apache Today: Is your web server running unnecessary software? (Feb 24, 2001)
• O'Reilly.com: dsniff and SSH - Reports of My Demise are Greatly Exaggerated(Dec 24, 2000)
• ApacheToday: Installing a secure web server(Dec 12, 2000)