Tag Archives: Apache

How to Secure Apache Server

When ever the attack performs nmap its very easy to determine the alive hosts, version number of server. At this moment if the target system is out dated then it very ease to to root by finding the suitable exploit for it.In this video the author is describing the how hide the version number by making simple changes in  /etc/httpd/conf/httpd.conf path , through this one can secure from the malicious scans and attacks.
View Source

Apache CXF Failed Element Verification

Apache CXF does not verify that elements were signed or encrypted by a particular Supporting Token. This affects all released versions as of 06/08/2012.
View Source

Apache CXF does not pick up some child policies of WS-SecurityPolicy 1.1 SupportingToken policy assertions on the client side. Apache CXF versions 2.4.5 through 2.4.7, 2.5.1 through 2.5.3, and 2.6.0 are affected.
View Source