Security
LDAP For Specifying Who Can Access Files
- LDAP (lightweight Directory access protocol)
“The Lightweight Directory Access Protocol (LDAP) is an open, vendor-neutral, industry standard application protocol for accessing and maintaining distributed directory information services over an Internet Protocol (IP) network.[1] Domain Directory services play an important role in developing intranet and Internet applications by allowing the sharing of information about users, systems, networks, services, and applications throughout the network.” From: [Wiki | Lightweight_Directory_Access_Protocol](https://en.wikipedia.org/wiki/Lightweight_Directory_Access_Protocol) |
“This module provides core authorization capabilities so that authenticated users can be allowed or denied access to portions of the web site. mod_authz_core provides the functionality to register various authorization providers. It is usually used in conjunction with an authentication provider module such as mod_authn_file and an authorization module such as mod_authz_user. It also allows for advanced logic to be applied to the authorization processing.” From: https://httpd.apache.org/docs/2.4/mod/mod_authz_core.html
To Ban IP
Ban Specific ip Addresses: https://httpd.apache.org/docs/2.4/howto/access.html
To Auto Ban IP Addresses
[digitalocean | How To Protect an Apache Server with Fail2Ban on Ubuntu 14.04](https://www.digitalocean.com/community/tutorials/how-to-protect-an-apache-server-with-fail2ban-on-ubuntu-14-04) |
Securing Apache and blocking a list of ip addresses
fail2ban and I have fail2ban installed so if some tries to login and fail it’ll block their IP from reaching the server
Restrict Apache Server to Local Network
https://www.techrepublic.com/article/how-to-block-all-but-lan-traffic-on-apache/
https://webmasters.stackexchange.com/questions/59624/allowing-access-to-an-apache-virtual-host-from-the-local-network-only
Journal
- 2020.07.29 Created file