Hardening Apache Httpd Web Server

Remove Server Version information,change the value of below directives to

ServerTokens Prod
ServerSignature Off

Disable directory Listing ,add below line to Directory directive for a particular directory

Options -Indexes

Disable Server Side Include, as it can increase load on the server. add below to Directory directive

Options -Includes

Turn off htaccess,to avoid overriding of apache configuration using .htaccess,add below line to Directory directive

AllowOverride None

Avoid Cross site Framing attack,add the below header configuration to apache httpd web server config file,it will allow only framing from the same source

Header always append X-Frame-Options SAMEORIGIN

Avoid Cross Site Scripting attack,add the below header configuration to apache httpd web server config file

Header set X-XSS-Protection "1; mode=block"

Decrease TimeOut value in apache httpd web server config file to improve performance.

Advertisements
This entry was posted in Linux. Bookmark the permalink.

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s