How to set up Apache Web server access control

If you're hoping to allow or deny Apache Web server access based on IP address, check out this expert response from Randall Gamby.

Randall Gamby

HP

I'm in the process of configuring Apache Web server access control to restrict access based on the host address of the box requesting access. Can you offer any best practices on how I should go about this?

I recommend that you follow the steps outlined below from the Apache website to learn how to set up Apache Web server access control:

Basically, the instructions call for setting up a "black list," or "restricted from access" set of rules. While this will work, keep in mind that the issue with black lists is they tend to become outdated as new threats emerge. While this is one way to restrict access, another more secure way is to use a Web access management (WAM) product in front of the Apache server. This allows access to be managed based on a "white list," or only those users authorized to access the Web server. A WAM can provide single sign-on, while also having less of an impact on your security infrastructure, since access is granted as needed, instead of denied as needed.

A WAM can also provide access to multiple Apache servers from a single domain, reducing administrative costs. Since the Apache Web server is most likely Internet facing, front-ending it with a WAM will reduce your risk of attack, since the WAM provides more powerful authentication and control tools.

This was last published in June 2010

Dig Deeper on Web authentication and access control

All
News
Get Started
Evaluate
Manage
Problem Solve

Related Q&A from Randall Gamby

How has enterprise SSO technology evolved?

Enterprise SSO products have matured over the years, so what's the state of eSSO today? Expert Randall Gamby discusses. Continue Reading

The FIDO authentication framework: What do enterprises need to know?

Enterprises need a full understanding of the FIDO authentication framework before switching to its technology. Expert Randall Gamby looks at the most... Continue Reading

Which is safer: an HSM appliance or a virtual appliance?

A self-managed HSM appliance may be the safer external key management system to use with your organization's encryption keys. Here's why. Continue Reading

Have a question for an expert?

Please add a title for your question

Get answers from a TechTarget expert on whatever's puzzling you.

Meet all of our Information Security experts

View all Information Security questions and answers

SearchCloudSecurity

How to build and maintain a multi-cloud security strategy

When using multiple cloud service providers, it's critical to consider your enterprise's cloud scope and the specifics of each ...

Why CASB tools are crucial to your cloud security

CASB tools have gained traction as cloud security becomes more important. Among other features, a cloud security access broker ...

Complexity requires new cloud-based patch management strategies

Patch management for cloud creates new challenges than traditional in-house programs. Expert Dave Shackleford presents patch ...

SearchNetworking

SD-WAN vs. VPN: How do they compare?

When it comes to comparing SD-WAN vs. VPN services, enterprises choosing between the technologies should consider factors like ...

How does 5G network slicing work, and what are the benefits?

5G network slicing promises the delivery of a new generation of high-speed services, including the transmission of 4K and ...

Cisco CCNA practice test: Try these 20 exam questions

Use this CCNA practice test as study material to prepare for the Cisco CCNA Routing and Switching 200-125 exam. With 20 questions...

SearchCIO

Home Depot CIO promotes in-house tech boot camp

For companies having trouble finding qualified IT professionals to hire, the solution may be closer than you think. Just ask Home...

CIO presentation to the board of directors: Candid tips from CIOs

Board presentations can be scary. The good news is CIOs can't go too wrong in a climate where boards are desperate to learn about...

Edge computing use cases must be driven by business value

For Schneider Electric and many other large enterprises that take a look at edge computing projects, the main criterion for ...

SearchEnterpriseDesktop

DaaS may encourage organizations to adopt Macs and Chromebooks

New options for delivering remote Windows apps in the cloud, combined with the maturity of SaaS apps, Chromebooks and Mac ...

Zoho adds new Zoho One features, management application

Zoho One customers can now make phone calls using Zoho's telephony platform, extend provisioning through custom apps and use the ...

4 steps to check application compatibility with Windows 10

Before a Windows 10 migration, IT admins should make sure all applications are compatible with the new OS. Here are four steps to...

SearchCloudComputing

Oracle Cloud Infrastructure SVP shares competitive strategy

Former AWS engineer Clay Magouyrk was one of the first people Oracle hired to build OCI and says Oracle has plenty of time -- and...

Zenoss automates transition to cloud-based IT monitoring

In an effort to improve the user experience while transitioning from on-premises to cloud-based monitoring, Zenoss has added new ...

How to modernize apps as part of the cloud migration process

Take stock of your applications and modernize them where appropriate as part of a cloud migration. Learn about the benefits of ...

ComputerWeekly.com

Government looks into digitising cultural collections with AI

A government report and trial investigate possibilities around mapping and connecting digitised cultural material with emerging ...

Drive for Nordic datacentre transformation

Nordic enterprises looking to spread abroad are outsourcing datacentre IT in cutting-edge ways to gain international advantage

Google pairs ‘record-breaking’ green energy deal with European datacentre expansion commitment

Google CEO Sundar Pichai publicly commits to expanding the company’s datacentre footprint in Europe and gives details of its ...

Dig Deeper on Web authentication and access control

Related Q&A from Randall Gamby

Have a question for an expert?

Start the conversation

0 comments

Register

Login

Forgot your password?

Your password has been sent to:

Please create a username to comment.