With more than 67% of web servers running Apache, it is by far the most widely used web server platform in the world. Apache has evolved into a powerful system that easily rivals other HTTP servers in terms of functionality, efficiency, and speed. Despite these impressive capabilities, though, Apache is only a beneficial tool if it's a secure one.To be sure, administrators installing and configuring Apache still need a sure-fire way to secure it--whether it's running a huge e-commerce operation, corporate intranet, or just a small hobby site.Our new guide, Apache Security, gives administrators…mehr
With more than 67% of web servers running Apache, it is by far the most widely used web server platform in the world. Apache has evolved into a powerful system that easily rivals other HTTP servers in terms of functionality, efficiency, and speed. Despite these impressive capabilities, though, Apache is only a beneficial tool if it's a secure one.To be sure, administrators installing and configuring Apache still need a sure-fire way to secure it--whether it's running a huge e-commerce operation, corporate intranet, or just a small hobby site.Our new guide, Apache Security, gives administrators and webmasters just what they crave--a comprehensive security source for Apache. Successfully combining Apache administration and web security topics, Apache Security speaks to nearly everyone in the field. What's more, it offers a concise introduction to the theory of securing Apache, as well as a broad perspective on server security in general.But this book isn't just about theory. The real strength of Apache Security lies in its wealth of interesting and practical advice, with many real-life examples and solutions. Administrators and programmers will learn how to: install and configure Apache prevent denial of service (DoS) and other attacks securely share servers control logging and monitoring secure custom-written web applications conduct a websecurity assessment use mod_security and other security-related modulesAnd that's just the tip of the iceberg, as mainstream Apache users will also gain valuable information on PHP and SSL/ TLS. Clearly, Apache Security is packed and to the point, with plenty of details for locking down this extremely popular and versatile web server.
Ivan Ristic is a web security specialist and the author of of ModSecurity, an open source intrusion detection and prevention engine for web applications. He is the founder of Thinking Stone, which offers products and services related to web application security. Ivan spends his time thinking about web application security, web intrusion detection, and security patterns. Prior to moving to the computer security field, Ivan spent a number of years working as a developer, system architect, and technical director in the software development industry. Ivan wrote Apache Security for O'Reilly, a concise yet comprehensive web security guide for administrators, system architects, and programmers. An active participant in the web application security community, Ivan is a member of the Web Application Security Consortium, OASIS, and the PHP Security Consortium.
Inhaltsangabe
Dedication Preface Chapter 1: Apache Security Principles Chapter 2: Installation and Configuration Chapter 3: PHP Chapter 4: SSL and TLS Chapter 5: Denial of Service Attacks Chapter 6: Sharing Servers Chapter 7: Access Control Chapter 8: Logging and Monitoring Chapter 9: Infrastructure Chapter 10: Web Application Security Chapter 11: Web Security Assessment Chapter 12: Web Intrusion Detection Appendix A: Tools Colophon
Dedication Preface Chapter 1: Apache Security Principles Chapter 2: Installation and Configuration Chapter 3: PHP Chapter 4: SSL and TLS Chapter 5: Denial of Service Attacks Chapter 6: Sharing Servers Chapter 7: Access Control Chapter 8: Logging and Monitoring Chapter 9: Infrastructure Chapter 10: Web Application Security Chapter 11: Web Security Assessment Chapter 12: Web Intrusion Detection Appendix A: Tools Colophon
Rezensionen
"Apache Security - die Empfehlung! Der Author Ivan Ristic beschreibt in diesem Buch Angriffstechniken auf Apache Webserver und zeigt Möglichkeiten auf, diese zu unterbinden. Dabei bezieht er sich nicht nur auf die Vorgehensweise zum absichern des Webservers, sondern vermittelt auch in einer lockeren Art das dazu benötigte Hintergrundwissen.
Für Apache-Nutzer, die sich ein sicheres System aufbauen wollen, ist dieses Werk unverzichtbar. Kurzum, ein Meisterwerk, was eine Empfehlung wert ist." -- Linux Usergroup Saalfeld-Rudolstadt, Februar 2007
Es gelten unsere Allgemeinen Geschäftsbedingungen: www.buecher.de/agb
Impressum
www.buecher.de ist ein Internetauftritt der buecher.de internetstores GmbH
Geschäftsführung: Monica Sawhney | Roland Kölbl | Günter Hilger
Sitz der Gesellschaft: Batheyer Straße 115 - 117, 58099 Hagen
Postanschrift: Bürgermeister-Wegele-Str. 12, 86167 Augsburg
Amtsgericht Hagen HRB 13257
Steuernummer: 321/5800/1497