Hardening Apache is a great book. This book is written by author Tony Mobily. You can read the Hardening Apache book on our website astrosadventuresbookclub.com in any convenient format!
* Thorough coverage of Apache security * Accessible for both junior and senior level system administrators * This will be most up-to-date book on Apache Foreword and tech review by Ken Coar; one of the most respected people in the industry
In typical operation, Apache is started by the root user, and it switches to the user defined by the User directive to serve hits. As is the case with any command that root executes, you must take care that it is protected from modification by non-root users.
Accessing this path surprised me: my server (Ubuntu 16.04 / Apache 2.4 / Virtualmin, hardened by various guides i.e. to not expose it's OS or the version of the webserver) responded with the Apache manual that exposed at least it's version.
Securing tomcat - OWASP
The lack of decent Apache security titles prompted Tony Mobily to pen Hardening Apache, the new, definitive reference on the subject. Here, Blane talks with Tony about the technology, the book ...