Web server defense drafted

By Diane Frank
Mar 03, 2002

"Guidelines on Securing Public Web Servers"

Related Links

Tackling one of the prime targets on a network for cyberattacks, the National Institute of Standards and Technology released a draft of its new guidance on securing public Web servers March 1.

The draft special publication is intended for technical personnel, as it contains detailed guidance and checklists on how to configure the Web server itself, as well as the underlying operating system and security products, such as firewalls and intrusion detection systems.

The guide also covers security administration procedures for Web servers, including logging, backup, recovery, testing and remote administration.

In the appendices, the guide outlines the steps to secure the two most commonly used Web servers, the open-source Apache server and Microsoft Corp.'s Internet Information Server.

Comments on the draft are due to Wayne Jansen (jansen@nist.gov) by March 28.

E-Mail this page

Printable Format

Featured

Cybersecurity

With elections over, CISA focus shifts to risk management center

DHS Secretary Kirstjen Nielsen signaled that her newly minted cybersecurity agency will shift its focus to a number of longer term initiatives around risk and supply chain.
Defense

DOD's failed audit shines a light on IT woes

Longstanding deficiencies in the Defense Department's tech portfolio emerged as a leading cause for the failure of the organization’s first completed audit report.
How contracting officers want to use the new micropurchase threshold

Steve Kelman's recent talk with feds reinforced his view that a $10,000 micropurchase limit opens up vast new acquisition possibilities.

Advanced Search

Stay Connected

FCW Update

Email Address

Country

Terms and Privacy Policy consent

Yes, I agree No, I don't agree

Select primary job function

Select agency/branch/business type

I agree to this site's Privacy Policy.

Web server defense drafted

Related Links

Featured

With elections over, CISA focus shifts to risk management center

DOD's failed audit shines a light on IT woes

How contracting officers want to use the new micropurchase threshold

Stay Connected

FCW Update

New from FCW

IRS missed 11,000 compromised SSNs

Can the AF's Kessel Run scale across the DOD?

NSA IG says expanded subpoena authorities could help oversight

Hurd's opponent concedes in Texas race

With elections over, CISA focus shifts to risk management center

With elections over, CISA focus shifts to risk management center

NSA IG says expanded subpoena authorities could help oversight

Can the AF's Kessel Run scale across the DOD?

DOD's failed audit shines a light on IT woes

IRS missed 11,000 compromised SSNs

Effective acquisition: A key enabler for successful IT modernization

With elections over, CISA focus shifts to risk management center

Can the AF's Kessel Run scale across the DOD?

OTAs could see more limits

Lawmakers balk at $350M addition to VA's health record deal