Apache provides reliable services for millions of websites and Internet applications, including a wide range of authentication schemes, language interfaces and platform security solutions, and so on, thanks to its open compatibility and strong security capabilities, it has become a favorite Web server for millions of users.
But because of this star halo of Apache, it pushes itself to the forefront, making it a favored target for hackers. While Apache and Linux offer excellent security for their best partners, there are a few protection measures we need to take to ensure that our web servers are impregnable in the face of these huge hacker groups. World data combined with many years of overseas server operations experience, for you to share a few simple and practical protection skills, hope to help everyone.
Timely updates
No matter what the software or system is, it's easy for hackers to find out what's going on on the shelf, and the development team will fix the bug and provide updates in the first time. So, we want to update our Apache version in time. With the help of a good update strategy, this is wise. Also, update Apache at the same time, it is best to also update PHP.
Limit request Size
Restricting large requests can be a good rejection of most Dos attacks. And we can also set up those vulnerable directories separately.
Disable unnecessary modules
Some of the modules that are turned on by default can be of no use to ordinary users, and by disabling these unnecessary modules, the threat to the server can be greatly reduced. Using the # grep loadmodule/etc/httpd/conf/httpd.conf this command, analyze the modules in the list and disable those modules that are not needed. We can even remove the unnecessary code.
Protect profile
The importance of the profile is self-explanatory, as described in the article "Protection tips for MySQL databases". And httpd.conf This configuration file is very important for server security. Therefore, it is necessary to hide this configuration file. Just show it when we need to configure the file. Use the chattr +i/httpd/conf/httpd.conf command to hide the configuration file.
Tips for protecting Apache Web servers with data sharing in the world