Apache Security - Ivan Ristic [227]
software updating, Keeping Up to Date
symbolic links, Options directive
synchronizing clocks on (ntpdate utility), Gathering Information and Monitoring Events
tuning steps (Lim), No load balancing, no high availability
user accounts, setting up, Setting Up the Server User Account
ServerSignature directive, Preventing Information Leaks
ServerTokens directive, Preventing Information Leaks
SetEnvIf directive, Using environment variables
SetHandler directive, Distributing Configuration Data
SFTP (Secure FTP), Restricting and Securing User Access
SHA-1 secure hash algorithm, One-Way Encryption
SHA-256 secure hash algorithm, One-Way Encryption
SHA-384 secure hash algorithm, One-Way Encryption
SHA-512 secure hash algorithm, One-Way Encryption
sharing servers, Apache View, Sharing Problems, File Permission Problems, Dynamic-Content Problems, Sharing Resources, Same Domain Name Problems, Information Leaks on Execution Boundaries, Distributing Configuration Data, Distributing Configuration Data, Distributing Configuration Data, Securing Dynamic Requests, Enabling Script Execution, ScriptAlias versus script enabling by configuration, Server-side includes, Assigning handlers, types, or filters, Assigning handlers, types, or filters, Using suEXEC, FastCGI, Running PHP as a Module, Working with Large Numbers of Users, Web Shells, Dangerous Binaries
configuration data, distributing, Distributing Configuration Data, Distributing Configuration Data, Distributing Configuration Data
.htaccess, Distributing Configuration Data
configuration errors, Distributing Configuration Data
dynamic requests, securing, Securing Dynamic Requests, Enabling Script Execution, ScriptAlias versus script enabling by configuration, Server-side includes, Assigning handlers, types, or filters, Assigning handlers, types, or filters, Using suEXEC, FastCGI, Running PHP as a Module
CGI limits, setting, Assigning handlers, types, or filters
FastCGI, FastCGI
handlers, types, and filters, assigning, Assigning handlers, types, or filters
PHP as module, Running PHP as a Module
script execution, Enabling Script Execution
ScriptAlias directive, ScriptAlias versus script enabling by configuration
SSIs, Server-side includes
suEXEC, Using suEXEC (see suEXEC execution wrapper)
problems, Apache View, Sharing Problems, File Permission Problems, Dynamic-Content Problems, Sharing Resources, Same Domain Name Problems, Information Leaks on Execution Boundaries
domain names, sharing, Same Domain Name Problems
dynamic-content, Dynamic-Content Problems
file permissions, File Permission Problems
information leaks, Information Leaks on Execution Boundaries
resources, sharing, Sharing Resources
untrusted parties, Apache View
users, large number of, Working with Large Numbers of Users, Web Shells, Dangerous Binaries
dangerous binaries, Dangerous Binaries
web shells, Web Shells
Simple Event Correlator (SEC), Simple Event Correlator
Simple Network Management Protocol (SNMP), Web Server Status
single sign-on, Single Sign-on (see SSO)
SiteDigger information-gathering tool, SiteDigger
Slapper Worm, Putting Apache in Jail
Slashdot effect, The Slashdot Effect
SNMP (Simple Network Management Protocol), Web Server Status
Spread Toolkit (distributed logging), Distributed Logging with the Spread Toolkit
SQL injection attacks, SQL Injection, A working example, Union, Multiple statements in a query, Special database features, SQL injection attack resources, Database attacks
database feature problems, Special database features
detecting attacks, Database attacks
example, A working example
query statements, Multiple statements in a query
resources for, SQL injection attack resources
UNION construct, Union
SSIs (server-side includes), Server-side includes
SSL (Secure Sockets Layer), SSL and TLS, SSL, SSL Communication Summary, Is SSL Secure?, Man in the middle attacks, Nontechnical issues, OpenSSL, OpenSSL, OpenSSL, Apache and SSL, Installing mod_ssl, Generating Keys, Generating a Certificate Signing Request, Configuring SSL,