"Chances are that your Web site has at least a few pages
that you really don't want published to the Internet at large. How
do you keep the Black Hats from seeing them, whilst not impeding
the access of the White Hats that need the pages?"
"...denial-of-service (DoS) attacks... cannot be stopped by
Apache, even though it may be aimed at the Web site. ... But for
less extreme cases, Apache's implementation of the Web security
mechanisms, when properly implemented, should be more than adequate
to protect your sensitive pages from exposure."