Linux Hardening in Hostile Networks: Server Security from TLS to Tor

5. Web Servers

This chapter focuses on web server security and covers both the Apache and Nginx web servers in all examples. “Section 1: Web Server Security Fundamentals” covers the fundamentals of web server security including web server permissions and HTTP basic authentication. “Section 2: HTTPS” discusses how to configure HTTPS, set it as the default by redirecting all HTTP traffic to HTTPS, secure HTTPS reverse proxies, and enable client certificate authentication. “Section 3: Advanced HTTPS Configuration” discusses more advanced web server hardening including HTTPS forward secrecy and then covers web application firewalls with ModSecurity.

Section 1: Web Server Security Fundamentals

Even though the Internet comprises a number of different ...

Get Linux Hardening in Hostile Networks: Server Security from TLS to Tor now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Linux Hardening in Hostile Networks: Server Security from TLS to Tor by Kyle Rankin

5. Web Servers

Section 1: Web Server Security Fundamentals

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly