-
Notifications
You must be signed in to change notification settings - Fork 3
Apache.sh
What is it?: Apache is an open source HTTP server that is a foundation of the world wide web.
What does it do?: It helps make connections to web domains and helps maintain a secure connection while on the site. Since it is a server side program it is what processes most of the data in the requested domain.
Purpose: Installs a hardened version of Apache.
Runtime: On Demand
Stages:
A: Installs Apache package
B: Stops apache process
C: Makes a backup of the current configuration of the program
D: Moves premade configuration to the apache directory
E: Creates a new port configuration file
F: Restarts apache process
G: Installs apache security packages and dependencies
H: Creates a ModSecurity configuration file with new rules
I: Installs OWASP security measures
J: Creates Links to the ModSecurity base rules
K: Hides PHP rules
L: Hides Apache Version
M: Removes Etags from the configuration file
N: Removes the default homepage
O: Disables directory browsing
P: Adds rules to the security configuration file
Q: Changes rules to only allow TLS use
R: Changes to use cipher suites
S: Enables header modules
T: Adds final security configurations to the configuration file
U: Restarts the apache process
The Apache2-2.sh and Apache2.sh scripts are not required to run. This can be deleted. It is a less complex version of this script.