Apache security settings - Fluid Topics - 3.9

Fluid Topics Integration Guide

Operating system
RHEL
Category
Reference Guides
Audience
public
Version
3.9

Run the following command:

As root user

yum install mod_ssl

Configuration of the ssl.conf file

The ssl.conf file needs to be applied first in the apache settings (before the security file).

Run the following commands:

As root user

mv /etc/httpd/conf.d/ssl.conf /etc/httpd/conf.d/01-ssl.conf
touch /etc/httpd/conf.d/ssl.conf

Configuration of the security.conf file

Create the following file:

As root user

/etc/httpd/conf.d/02-security.conf

Add the following lines:

TraceEnable Off
SSLProtocol All -SSLv2 -SSLv3
SSLCipherSuite ALL:!RC4
ServerSignature Off
ServerTokens Prod
LoadModule reqtimeout_module modules/mod_reqtimeout.so
RequestReadTimeout header=20-40,minrate=500
RequestReadTimeout body=10,minrate=500
<IfModule prefork.c>
StartServers 5
MinSpareServers 5
MaxSpareServers 20
ServerLimit 50
MaxClients 50
MaxRequestsPerChild 4000
</IfModule>