https://community.hpe.com/t5/operating-system-linux/how-to-make-apache-more-secure/m-p/3543901#M17563 Girish,<BR /><BR />I have of course no clue about the 'room to move' you have, but, if you still have a free choice of infrastructure, then you might consider Apache on OpenVMS.<BR /><BR />The _ONLY_ available Apache for VMS _IS_ the Secure Web Server.<BR /><BR />hth<BR /><BR />Proost.<BR /><BR />Have one on me.<BR /><BR />jpe Mon, 16 May 2005 04:10:49 GMT Jan van den Ende 2005-05-16T04:10:49Z https://community.hpe.com/t5/operating-system-linux/how-to-make-apache-more-secure/m-p/3543897#M17559 Does any one of you have idea of hardening Apache and making more secure to outside world....somebody told u have standard CIS Bemchmark for this....can u check and let me know.... Fri, 13 May 2005 00:17:12 GMT https://community.hpe.com/t5/operating-system-linux/how-to-make-apache-more-secure/m-p/3543897#M17559 Girish_26 2005-05-13T00:17:12Z https://community.hpe.com/t5/operating-system-linux/how-to-make-apache-more-secure/m-p/3543898#M17560 In what area are you wanting to make it more secure?<BR /><BR />Running it in a CHRoot jail so there's no other filesystem info available?<BR /><BR />Tieing down the HTML documents so they are more restrictive?<BR /><BR />Limiting access to CGI's and other dynamic content?<BR /><BR />As for the CIS Benchmark thing, I've never heard of it. Fri, 13 May 2005 03:57:49 GMT https://community.hpe.com/t5/operating-system-linux/how-to-make-apache-more-secure/m-p/3543898#M17560 Stuart Browne 2005-05-13T03:57:49Z https://community.hpe.com/t5/operating-system-linux/how-to-make-apache-more-secure/m-p/3543899#M17561 Girish,<BR /><BR />Download the CIS benchmarking tool from here<BR /><BR /><A href="http://www.cisecurity.org/sub_form.html" target="_blank">http://www.cisecurity.org/sub_form.html</A><BR /><BR />The Download Files Include <BR /><BR />Apache_Benchmark_v1.0.pdf - the Benchmark document contains detailed instructions for implementing the steps necessary for CIS Level-1 and Level-2 security.&gt; <BR /><BR />cis_score_tool_apache_v2.0.8.sh.gz - a Host-based Scoring Tool scores the security of a system against the Benchmark and creates a variance report. <BR /> <BR />Regards,<BR />Naveej Fri, 13 May 2005 04:35:33 GMT https://community.hpe.com/t5/operating-system-linux/how-to-make-apache-more-secure/m-p/3543899#M17561 Naveej.K.A 2005-05-13T04:35:33Z https://community.hpe.com/t5/operating-system-linux/how-to-make-apache-more-secure/m-p/3543900#M17562 Well that document sounds like simple common sense to me, but I guess I've been doing this sort of thing for a long time.<BR /><BR />That PDF doesn't really lay down many restrictions on what Apache should have in order to pass. Fri, 13 May 2005 10:46:44 GMT https://community.hpe.com/t5/operating-system-linux/how-to-make-apache-more-secure/m-p/3543900#M17562 Stuart Browne 2005-05-13T10:46:44Z https://community.hpe.com/t5/operating-system-linux/how-to-make-apache-more-secure/m-p/3543901#M17563 Girish,<BR /><BR />I have of course no clue about the 'room to move' you have, but, if you still have a free choice of infrastructure, then you might consider Apache on OpenVMS.<BR /><BR />The _ONLY_ available Apache for VMS _IS_ the Secure Web Server.<BR /><BR />hth<BR /><BR />Proost.<BR /><BR />Have one on me.<BR /><BR />jpe Mon, 16 May 2005 04:10:49 GMT https://community.hpe.com/t5/operating-system-linux/how-to-make-apache-more-secure/m-p/3543901#M17563 Jan van den Ende 2005-05-16T04:10:49Z https://community.hpe.com/t5/operating-system-linux/how-to-make-apache-more-secure/m-p/3543902#M17564 Hi,<BR /><BR />Apache team guys aren't little boys, Apache is fairly safe as shipped, but it depends much on what you do with it. Have a nessus try on it, or something more sophisticated like webscarab if you need specific tests.<BR /><BR />Security also relies much on what you put on your server... could you tell us more about it ? cgi ? Fast cgi ? perl ? php ? static ? <BR />And son on.<BR /><BR />Tks<BR /><BR />Rgds<BR /><BR />Jerome Mon, 16 May 2005 05:08:34 GMT https://community.hpe.com/t5/operating-system-linux/how-to-make-apache-more-secure/m-p/3543902#M17564 Jerome Henry 2005-05-16T05:08:34Z https://community.hpe.com/t5/operating-system-linux/how-to-make-apache-more-secure/m-p/3543903#M17565 Hi Girish,<BR /><BR />Welcome to the forums!<BR /><BR />please take a moment to assign points to those who have assisted you:<BR /><BR /><A href="http://forums1.itrc.hp.com/service/forums/helptips.do?#33" target="_blank">http://forums1.itrc.hp.com/service/forums/helptips.do?#33</A><BR /><BR />thanks,<BR /><BR />Gary Mon, 16 May 2005 10:02:13 GMT https://community.hpe.com/t5/operating-system-linux/how-to-make-apache-more-secure/m-p/3543903#M17565 Gary Cantwell 2005-05-16T10:02:13Z