Security

LDAP For Specifying Who Can Access Files

“The Lightweight Directory Access Protocol (LDAP) is an open, vendor-neutral, industry standard application protocol for accessing and maintaining distributed directory information services over an Internet Protocol (IP) network.[1] Domain Directory services play an important role in developing intranet and Internet applications by allowing the sharing of information about users, systems, networks, services, and applications throughout the network.” From: [Wiki Lightweight_Directory_Access_Protocol](https://en.wikipedia.org/wiki/Lightweight_Directory_Access_Protocol)

“This module provides core authorization capabilities so that authenticated users can be allowed or denied access to portions of the web site. mod_authz_core provides the functionality to register various authorization providers. It is usually used in conjunction with an authentication provider module such as mod_authn_file and an authorization module such as mod_authz_user. It also allows for advanced logic to be applied to the authorization processing.” From: https://httpd.apache.org/docs/2.4/mod/mod_authz_core.html

To Ban IP

Ban Specific ip Addresses: https://httpd.apache.org/docs/2.4/howto/access.html

To Auto Ban IP Addresses

[digitalocean How To Protect an Apache Server with Fail2Ban on Ubuntu 14.04](https://www.digitalocean.com/community/tutorials/how-to-protect-an-apache-server-with-fail2ban-on-ubuntu-14-04)

Securing Apache and blocking a list of ip addresses

fail2ban and I have fail2ban installed so if some tries to login and fail it’ll block their IP from reaching the server

Restrict Apache Server to Local Network

https://www.techrepublic.com/article/how-to-block-all-but-lan-traffic-on-apache/

https://webmasters.stackexchange.com/questions/59624/allowing-access-to-an-apache-virtual-host-from-the-local-network-only

Journal