Security

From Anarchaserver
Revision as of 22:36, 23 September 2015 by Ramona (talk | contribs) (Created page with "=== Bogus http requests === Hackers can send bogus http requests to get the server to generate error pages because the information about the server OS and web server version ...")
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)

Bogus http requests

Hackers can send bogus http requests to get the server to generate error pages because the information about the server OS and web server version can be useful to them. The information given out by the server seems not sufficiently reduced. Its not a good idea to broadcast the versions of software your running. While it doesn't make your server any more secure, it may make you less of a target.

Settings for that are in /etc/apache2/conf.d/security

See http://helpinlinux.com/apache-server-tokens/

  • Current setting is "ServerTokens OS". This will give out the web server

version and the operating system version. I recommend setting it to "Prod"?

  • ServerSignature is On. I recommend turning it off.
  • Restart Apache web server.

iptables

fail2ban

network wrappers (PAM)