According to Netcraft’s 2015 web server statistics, 47.7% of all websites are using Apache—making it the most popular web server in the world. Ubiquity has its price, however: the open source project is under the constant scrutiny of both malicious actors and security professionals alike.
In terms of CVEs, Apache’s HTTP server currently holds 190 documented vulnerabilities to its name—though in all fairness, it’s had a pretty good record for security, especially given its widespread use and longevity. That said, proper hardening is crucial requirement for securing Apache against today’s cyber threats. The following are 10 ways to harden Apache for a strong security posture: