NIST: Comprehensive Web Server Security Guidelines Draft Released

Tackling one of the prime targets on a network for cyberattacks, the National Institute of Standards and Technology released a draft of its new guidance on securing public Web servers March 1. The draft special publication is intended for technical personnel, as it contains detailed guidance and checklists on how to configure the Web server itself. . . Tackling one of the prime targets on a network for cyberattacks, the National Institute of Standards and Technology released a draft of its new guidance on securing public Web servers March 1. The draft special publication is intended for technical personnel, as it contains detailed guidance and checklists on how to configure the Web server itself, as well as the underlying operating system and security products, such as firewalls and intrusion detection systems.

The guide also covers security administration procedures for Web servers, including logging, backup, recovery, testing and remote administration.

The link for this article located at FCW is no longer available.