Skip to content

simeononsecurity/Apache-Web-Server-Hardening

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

4 Commits

.github/ISSUE_TEMPLATE

.github/ISSUE_TEMPLATE

 
 

Configurations

Configurations

 
 

.gitattributes

.gitattributes

 
 

LICENSE

LICENSE

 
 

README.md

README.md

 
 

Repository files navigation

Hardening Apache Web Servers

A collection of example configurations and scripts to aid system administrators in hardening Apache web servers.

Apache, out of the box, is surprisingly insecure. Many best practices and security configurations have to be configured manually before rolling Apache out in a production environment. You may use this GitHub repository as a starting point towards securing your Apache instances.

ModSecurity

We'll start with one of the most important changes, implementing ModSecurity with OWASP ModSecurity configurations.

Please read this for instructions.

SSL Certificates

Self Signed

Please read this for instructions.

Automate with LetsEncrypt and Certbot

Please read this for instructions.

About

An collection of example configurations and scripts to aid administrators in configuring a hardened Apache Web Server

simeononsecurity.com/posts/hardening-apache/

Topics

security encryption apache hardening ssl-certificates

Resources

Readme

License

MIT license
Activity

Stars

6 stars

Watchers

3 watching

Forks

1 fork
Report repository

Releases

No releases published

Sponsor this project

  •  
Learn more about GitHub Sponsors

Languages