For those looking to make sure their apache behaves well under adverse ( read hacking ) conditions, take a look at the mod_security module for apache 1.x and 2.x – it acts as a proxy between a client and the web application. It can stop everything from SQL injections and cross-site scripting, to input-based attacks. Setup is fairly straight-forward with a simple apxs command and then a bit of config in the httpd.conf file. You can add your own customised filters to check on any aspect of the web exchange as required. The ModSecurity Rules subsite has a lot of information pertaining to your own rule creation efforts.
This Site Is Protected By
Shield Security →
Shield Security →