Security Basics mailing list archives

Re: Linux Web Server Hardening (LAMP + Wiki)

From: Michael Peppard <mpeppard () impole com>
Date: Mon, 28 Jan 2013 10:56:52 -0500

You will need to get up to speed on selinux. ACLs, chroot jails andiptables alone don't cut it.

LAMP is well supported by the default selinux rules on every major Linuxdistro. You will have to learn how to tighten the security rules, suchas type enforcement yourself though.


Mike

On 01/25/2013 04:31 PM, Jeffrey Walton wrote:

Hi All,

Is anyone aware of a hardening guide for a Linux LAMP server with a
Wiki component?

I have an older Linux Server hardening book, but nothing recent. I
have not seen a Wiki hardening document.

Thanks in advance,

Jeff

------------------------------------------------------------------------
Securing Apache Web Server with thawte Digital Certificate
In this guide we examine the importance of Apache-SSL and who needs an SSL certificate.  We look at how SSL works, how 
it benefits your company and how your customers can tell if a site is secure. You will find out how to test, purchase, 
install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for set-up are 
highlighted to help you ensure efficient ongoing management of your encryption keys and digital certificates.

http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727d1
------------------------------------------------------------------------



------------------------------------------------------------------------
Securing Apache Web Server with thawte Digital Certificate
In this guide we examine the importance of Apache-SSL and who needs an SSL certificate.  We look at how SSL works, how 
it benefits your company and how your customers can tell if a site is secure. You will find out how to test, purchase, 
install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for set-up are 
highlighted to help you ensure efficient ongoing management of your encryption keys and digital certificates.

http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727d1
------------------------------------------------------------------------

Current thread:

Re: Linux Web Server Hardening (LAMP + Wiki), (continued)
- - - Re: Linux Web Server Hardening (LAMP + Wiki) Ansgar Wiechers (Jan 31)
  - Re: Linux Web Server Hardening (LAMP + Wiki) Jason M (Jan 28)
  - Re: Linux Web Server Hardening (LAMP + Wiki) James Thomas (Jan 28)
    - Re: Linux Web Server Hardening (LAMP + Wiki) Michael Peppard (Jan 29)
  - RE: Linux Web Server Hardening (LAMP + Wiki) Ulm, Matt (Jan 28)
  - Re: Linux Web Server Hardening (LAMP + Wiki) Littlefield, Tyler (Jan 28)
- Re: Linux Web Server Hardening (LAMP + Wiki) Henri Salo (Jan 28)
- RE: Linux Web Server Hardening (LAMP + Wiki) Balakrishnan Nadar (Jan 28)
- Re:Linux Web Server Hardening (LAMP + Wiki) forgaoqiang (Jan 28)
  - Re: Linux Web Server Hardening (LAMP + Wiki) gremlin (Jan 31)
- Re: Linux Web Server Hardening (LAMP + Wiki) Michael Peppard (Jan 28)
  - Re: Linux Web Server Hardening (LAMP + Wiki) Tracy Reed (Jan 29)
- Re: Linux Web Server Hardening (LAMP + Wiki) Jeffrey Walton (Jan 28)
- RE: Linux Web Server Hardening (LAMP + Wiki) Tommy Thomas (Jan 29)
- Re: RE: Linux Web Server Hardening (LAMP + Wiki) Mikhail A. Utin (Jan 28)
  - RE: RE: Linux Web Server Hardening (LAMP + Wiki) Sosa . Angel (Jan 29)