Jump to content

datajumper

Recommended Posts

hey guys  i have been searching alot how to secure my apache server  ...i have found  libapache-modsecurity

the webserver is running on debian9 ...no gui lol

but i followed the guides  ..to turne SecRuleEngine on 

but when i do  i try to restart  ....service apache2 restart

and apache  is just dead it the water lol   so now  im turning to you guys

maybe im not doing something right  idk   but i scanned my website with vega  ...i know how to use lets encrypt  i just havent done that part yet lol

but vega  says my site  has  xss flaws and ssql  and  of course  clear http  ...bc i havent installed certbot yet

but can any of you all tell me or give me advice on how to secure my apache2 server ??  modsecurity and  add owasp rules-crs ??  im having a hard time  understanding

i really need help on this guys pls   ..if  i have been unclear because im not the best at explaining lol    feel free to ask questions  and ill try to explain better  thanks in advance

Link to comment
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...