Professional Apache Security

Apache provides many features that can be used to either compromise server security or gather information about a server that the administrator would prefer kept secret. Of course, these features aren't there to create security holes, but the more complex the configuration, the more chances there are of creating an unanticipated use of the server. Understanding what is, and what is not, expected behavior is essential, both when creating the server configuration and detecting possible misuse. There is no such thing as a totally one hundred percent secure server. In this book we delve into crucial aspects of Apache security, and practical ways of setting up a safer, more secure implementation of an Apache server. Who is this book for ? This book is a tutorial, a resource, and a reference for Apache administrators, security analysts, web developers, and system architects, who want to secure Apache on UNIX and its variant platforms.