It depends on what OS you are going to install Apache. If it's Microsoft Products then you will need to harden NT or w2k. if it's linux then you will need to either Install a barebones Linux, and ensure that you disable services that are not required like ftp, telnet, and sendmail, any applications that could lead to a vulnerability. As far as I am aware The version of Apache that had vulerabilities was version 1 or lower. I would suggest that you have a look at cert and do a search for apache.
Kevin -----Original Message----- From: REMY Vincent [mailto:[EMAIL PROTECTED]] Sent: Friday, 23 November 2001 10:14 PM To: [EMAIL PROTECTED] Subject: How securing Apache Web server ? Hi, I need some information from you all. Can anyone point me in the right direction for good white papers/documents, links on securing an Apache Web server ? And the list of vulnerabilities would be appreciated. Thank's for any help. Vincent REMY
