Apache Security

Print $34.95

Print+Ebook $38.45

Ebook $27.99

(Mobi, PDF, ePub)

Safari Books Online

What is this?

Print £26.99

What is this?

Apache Security

By: Ivan Ristic
Publisher:: O'Reilly Media
Released:: February 2005
Pages:: 432

Description

This all-purpose guide for locking down Apache arms readers with all the information they need to securely deploy applications. Administrators and programmers alike will benefit from a concise introduction to the theory of securing Apache, plus a wealth of practical advice and real-life examples. Topics covered include installation, server sharing, logging and monitoring, web applications, PHP and SSL/TLS, and more.

Full Description

Table of Contents

Chapter 1 Apache Security Principles
1. Security Definitions
2. Web Application Architecture Blueprints
Chapter 2 Installation and Configuration
1. Installation
2. Configuration and Hardening
3. Changing Web Server Identity
4. Putting Apache in Jail
Chapter 3 PHP
1. Installation
2. Configuration
3. Advanced PHP Hardening
Chapter 4 SSL and TLS
1. Cryptography
2. SSL
3. OpenSSL
4. Apache and SSL
5. Setting Up a Certificate Authority
6. Performance Considerations
Chapter 5 Denial of Service Attacks
1. Network Attacks
2. Self-Inflicted Attacks
3. Traffic Spikes
4. Attacks on Apache
5. Local Attacks
6. Traffic-Shaping Modules
7. DoS Defense Strategy
Chapter 6 Sharing Servers
1. Sharing Problems
2. Distributing Configuration Data
3. Securing Dynamic Requests
4. Working with Large Numbers of Users
Chapter 7 Access Control
1. Overview
2. Authentication Methods
3. Access Control in Apache
4. Single Sign-on
Chapter 8 Logging and Monitoring
1. Apache Logging Facilities
2. Log Manipulation
3. Remote Logging
4. Logging Strategies
5. Log Analysis
6. Monitoring
Chapter 9 Infrastructure
1. Application Isolation Strategies
2. Host Security
3. Network Security
4. Using a Reverse Proxy
5. Network Design
Chapter 10 Web Application Security
1. Session Management Attacks
2. Attacks on Clients
3. Application Logic Flaws
4. Information Disclosure
5. File Disclosure
6. Injection Flaws
7. Buffer Overflows
8. Evasion Techniques
9. Web Application Security Resources
Chapter 11 Web Security Assessment
1. Black-Box Testing
2. White-Box Testing
3. Gray-Box Testing
Chapter 12 Web Intrusion Detection
1. Evolution of Web Intrusion Detection
2. Using mod_security

Appendix A Tools
1. Learning Environments
2. Information-Gathering Tools
3. Network-Level Tools
4. Web Security Scanners
5. Web Application Security Tools
6. HTTP Programming Libraries
Colophon

Product Details

Title:

Apache Security

By:

Ivan Ristic

Publisher:

O'Reilly Media

Formats:

Print
Ebook
Safari Books Online

Print Release:

February 2005

Ebook Release:

February 2009

Pages:

432

Print ISBN:

978-0-596-00724-9

| ISBN 10:

0-596-00724-8

Ebook ISBN:

978-0-596-10492-4

| ISBN 10:

0-596-10492-8

Customer Reviews

About the Author

Ivan Ristic

Ivan Ristic is a web security specialist and the author of of ModSecurity, an open source intrusion detection and prevention engine for web applications. He is the founder of Thinking Stone, which offers products and services related to web application security. Ivan spends his time thinking about web application security, web intrusion detection, and security patterns. Prior to moving to the computer security field, Ivan spent a number of years working as a developer, system architect, and technical director in the software development industry.

Ivan wrote Apache Security for O'Reilly, a concise yet comprehensive web security guide for administrators, system architects, and programmers. An active participant in the web application security community, Ivan is a member of the Web Application Security Consortium, OASIS, and the PHP Security Consortium.

View Ivan Ristic's full profile page.

Service and support by Satisfaction

O'Reilly Books & Videos

Apache Security

Chapter 1 Apache Security Principles

Security Definitions

Web Application Architecture Blueprints

Chapter 2 Installation and Configuration

Installation

Configuration and Hardening

Changing Web Server Identity

Putting Apache in Jail

Chapter 3 PHP

Installation

Configuration

Advanced PHP Hardening

Chapter 4 SSL and TLS

Cryptography

SSL

OpenSSL

Apache and SSL

Setting Up a Certificate Authority

Performance Considerations

Chapter 5 Denial of Service Attacks

Network Attacks

Self-Inflicted Attacks

Traffic Spikes

Attacks on Apache

Local Attacks

Traffic-Shaping Modules

DoS Defense Strategy

Chapter 6 Sharing Servers

Sharing Problems

Distributing Configuration Data

Securing Dynamic Requests

Working with Large Numbers of Users

Chapter 7 Access Control

Overview

Authentication Methods

Access Control in Apache

Single Sign-on

Chapter 8 Logging and Monitoring

Apache Logging Facilities

Log Manipulation

Remote Logging

Logging Strategies

Log Analysis

Monitoring

Chapter 9 Infrastructure

Application Isolation Strategies

Host Security

Network Security

Using a Reverse Proxy

Network Design

Chapter 10 Web Application Security

Session Management Attacks

Attacks on Clients

Application Logic Flaws

Information Disclosure

File Disclosure

Injection Flaws

Buffer Overflows

Evasion Techniques

Web Application Security Resources

Chapter 11 Web Security Assessment

Black-Box Testing

White-Box Testing

Gray-Box Testing

Chapter 12 Web Intrusion Detection

Evolution of Web Intrusion Detection

Using mod_security

Appendix A Tools

Learning Environments

Information-Gathering Tools

Network-Level Tools

Web Security Scanners

Web Application Security Tools

HTTP Programming Libraries

Colophon

Ivan Ristic