Re: Advice needed, trying to find the vulnerable code on Debian webserver.

To: TiM <tim@muppetz.com>
Cc: Ross Tsolakidis <Ross.Tsolakidis@day3.com.au>, debian-security@lists.debian.org
Subject: Re: Advice needed, trying to find the vulnerable code on Debian webserver.
From: Javier Fernández-Sanguino Peña <jfs@computer.org>
Date: Wed, 16 Jun 2004 11:18:46 +0200
Message-id: <[🔎] 20040616091846.GA7352@dat.etsit.upm.es>
In-reply-to: <[🔎] 40CF8A3D.3040203@muppetz.com>
References: <[🔎] D03D875AFA05D34C98F1B0DBB71C3DBA6E1B33@hermes.powerserve.lan> <[🔎] 40CF8A3D.3040203@muppetz.com>

On Wed, Jun 16, 2004 at 11:46:05AM +1200, TiM wrote:
> 
> Look at installing mod_security, http://modsecurity.org
> 
> Install some rules for it to harden your webserver, see if anything is 
> flagged in the security log.

Also notice that modsecurity provides a way to easily chroot your Apache 
web server, which would make life more difficult to an attacker (if he 
doesn't have a /tmp location to write on)

Regards

Javier

Attachment: signature.asc
Description: Digital signature

Reply to:

References:
- RE: Advice needed, trying to find the vulnerable code on Debian webserver.
  - From: "Ross Tsolakidis" <Ross.Tsolakidis@day3.com.au>
- Re: Advice needed, trying to find the vulnerable code on Debian webserver.
  - From: TiM <tim@muppetz.com>

Prev by Date: Re: Hashcash - was re: Spam fights
Next by Date: Re: Advice needed, trying to find the vulnerable code on Debian webserver.
Previous by thread: Re: Advice needed, trying to find the vulnerable code on Debian webserver.
Next by thread: Re: Advice needed, trying to find the vulnerable code on Debian webserver.
Index(es):
- Date
- Thread