[olug] Fwd: Linux Web Server Hardening (LAMP + Wiki)

Barry Von Ahsen barry at vonahsen.com
Tue Jan 29 02:46:17 UTC 2013 

I'm assuming your wiki is mediawiki, others probably have similar pages:

https://www.mediawiki.org/wiki/Manual:Security

if the primary component is the wiki, the above is probably sufficient.
 for additional LAMP components, I install apache with minimal addons,
disable the libraries I don't need (debian and ubuntu make this
especially easy), and for PHP I add mod_security and php-suhosin.  DOD
has a good guide for apache also.

some of these may make the wiki unusable without extra tweaking, but
that tweaking is what helps you learn :)


-barry



On 01/28/2013 07:52 PM, Jason Troy wrote:
> I'm curious if there are any LAMP users on the list who want to share
> resources. One person responded to this post with "use win-doze, linux
> isn't secure!".
> 
> --JT
> ---------- Forwarded message ----------
> From: "Jeffrey Walton" <noloader at gmail.com>
> Date: Jan 28, 2013 2:01 AM
> Subject: Linux Web Server Hardening (LAMP + Wiki)
> To: "Security Basics List" <security-basics at securityfocus.com>
> 
> Hi All,
> 
> Is anyone aware of a hardening guide for a Linux LAMP server with a
> Wiki component?
> 
> I have an older Linux Server hardening book, but nothing recent. I
> have not seen a Wiki hardening document.
> 
> Thanks in advance,
> 
> Jeff
> 
> ------------------------------------------------------------------------
> Securing Apache Web Server with thawte Digital Certificate
> In this guide we examine the importance of Apache-SSL and who needs an SSL
> certificate.  We look at how SSL works, how it benefits your company and
> how your customers can tell if a site is secure. You will find out how to
> test, purchase, install and use a thawte Digital Certificate on your Apache
> web server. Throughout, best practices for set-up are highlighted to help
> you ensure efficient ongoing management of your encryption keys and digital
> certificates.
> 
> http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727d1
> ------------------------------------------------------------------------
> _______________________________________________
> OLUG mailing list
> OLUG at olug.org
> https://lists.olug.org/mailman/listinfo/olug

More information about the OLUG mailing list