How to Secure the Apache Server?

1
How to secure the apache server?
How to Secure the Apache Server?
How to Secure the Apache Server?
2

• Apache is one of the most widely used web servers
  and so the need to ensure its security is vital.
• A default or improper configuration of the server
  makes it highly prone to hacking and other cyber
  attacks.
• A proper and secure hardening of the Apache
  server enables to protect it from damaging cyber
  threats.

3
To prevent being a victim of such cyber attacks
consider the below steps

• Access Any organization that uses an
  internet-connected Linux Apache web-server needs
  to be fully aware of its functionality, location,
  administration and security measures to protect
  the servers. In the event of an attack, proper
  recovery measures should also be in place to
  prevent further damages.
• Maintaining a well-structured policy
  Well-structured policies need to be implemented
  for the security and maintenance of Linux Apache
  systems. The security measures include the
  restriction of access to certain services to
  selected IP addresses. Implementing a two-factor
  authentication to counter-attack brute force
  attacks. Also, scanning of the anti-malware
  software needs to be performed on the servers on
  a periodic basis.

4
Securing Apache Installation

• Ensure appropriate user and group is used
• Retain the Apache server-info disabled
• Retain the Apache server-status disabled
• Keep the ServerSignature Directive disabled
• Change the ServerToken directives to prod
• Retain Trace Http Request disabled
• Retain only the required modules enabled
• Keep the directory listing disabled

5
Steps to prevent DDOS attacks

• Use of Allow and Deny to Restrict access to
  directories
• Disable Apaches following of Symbolic links
• Turn off Server-side includes and CGI Execution

6
Read Blog https//apachebooster.com/blog/how-to-s
ecure-the-apache-server/