There is a new document available from NIST on how to secure public facing web servers.
NIST announces the release of draft Special Publication (SP) 800-44 version 2, Guidelines on Securing Public Web Servers. SP 800-44 version 2 is intended to aid organizations in the installation, configuration, and maintenance of secure public Web servers. It presents recommendations for securing Web server operating systems, applications, and content; protecting Web servers through the supporting network infrastructure; and administering Web servers securely. SP 800-44 version 2 also provides guidance on using authentication and encryption technologies to protect information on Web servers. This publication replaces the original version of SP 800-44, which was released in 2002.
Download: NIST 800-44
Tags: NIST, Guidelines, Secure Webservers
