One aspect of hardening your server is to provide as little information as possible to attackers about the web server and version that you are using. Apache itself does not provide a method of controlling all of the content given I the server header field. As a result you will need to look to mod_security to help change your identity. About the best you can do, with the minimum input, is to change the web server identity so that automated attacks are fooled. Determined attackers will be able to do OS fingerprinting to see that the server is some type of Linux OS but they will still be left in the dark about the web server and version.

Full story »
mogyweb's picture
Created by mogyweb 13 years 4 weeks ago
Category: High End   Tags:

Best karma users