This tutorial focused on the steps necessary to secure your Apache Web server installation. Topics covered included:

• Securing Apache's default installation by understanding the httpd.conf configuration file.
• User authentication: basic and digest.
• Configuring Apache to operate in a chroot environment.

Securing a Web server is not a "set it and forget it" task; it's an ongoing process. Secure Web servers are maintained by proactive administrators who keep their installations current, monitor newsgroups for information that may impact their configurations, and who are constantly refreshing their knowledge base. The next panel contains several key resources to help you down this path.