====== Apache 2.4 ======

===== Security =====

==== Modules ====

Install the following modules and configure settings in /etc/apache2/mods-available/*.conf:
  * mod-evasive
  * mod-qos
  * mod-reqtimeout
  * modsecurity

==== Links ====
  * [[https://securityintelligence.com/defending-against-apache-web-server-ddos-attacks/|Defending Against Apache Web Server DDoS Attacks]]
  * [[https://www.linode.com/docs/web-servers/apache-tips-and-tricks/modevasive-on-apache|mod_evasive on Apache]]
  * [[https://www.acunetix.com/blog/articles/slow-http-dos-attacks-mitigate-apache-http-server/|How To Mitigate Slow HTTP DoS Attacks in Apache HTTP Server]]
  * [[https://www.digitalocean.com/community/tutorials/how-to-set-up-mod_security-with-apache-on-debian-ubuntu|How To Set Up mod_security with Apache on Debian/Ubuntu]]
  * [[http://www.parkansky.com/china.htm|Stop Traffic From China IP Addresses]]
  * [[https://www.iplocation.net/|IP Location Finder]]
  * [[deb720:iptables|DoS]]
  * [[https://www.digicert.com/ssl-support/apache-multiple-ssl-certificates-using-sni.htm|Using Multiple SSL Certificates in Apache with One IP Address]]

===== Upgrade Apache 2.2 to 2.4 =====

==== Config files ====

  - All config files in /etc/apache2/sites-available, sites-enabled, conf-available, and conf-enabled need to have extension ".conf"
  - Folder "conf.d" is deprecated, use conf-enabled instead
  - Place a config file in conf-available with the directory path to your document root where you keep your own sites, if you do not keep them in the standard path /var/www. Replace "order allow,deny" statements with "Require" statements in all your VirtualHost definitions:<code>
<Directory /path/to/www/>
  Options Indexes FollowSymLinks
  AllowOverride None
  Require all granted
</Directory></code>
  - Don't forget to modify phpmyadmin.conf in conf-available

==== Links ====

  * [[https://httpd.apache.org/docs/current/upgrading.html|Upgrading to 2.4 from 2.2]]