You can now find Cyber Kendra on Google News | Telegram

Secure Your Apache Struts with Selinux

Recently we have seen there are critical security bug that have been disclosed in Apache Struts. 
Moreover, another worst data breach has been took place by exploiting Apache Struts vulnerability. 

Here  a researcher Kevin Beaumont, have just got a simple way to hardening the security of Apache server and also make all the above Struts exploit useless.

On the blog post he mentioned that just by implementing Selinux will make all work done, and solve all the issues. Hope you all know to deploy Selinux, if you not just Google it.

"SELinux is 19 years old and installed with Redhat and Fedora Linux, it just needs setting to enforcement mode. Considering — say — Experian spend big money on Splunk, Thycotic, Qualys and Sailpoint on their Struts servers, they might want to enable this free, two decade old feature" - says Kevin on post.
You can also make changes to Selinux policies to lock down it further. You can read a guide on configuring Selinux policies.

So guys you can also try this simple and easy trick to hardening your Apache server.

Post a Comment

Cookie Consent
We serve cookies on this site to analyze traffic, remember your preferences, and optimize your experience.
It seems there is something wrong with your internet connection. Please connect to the internet and start browsing again.
AdBlock Detected!
We have detected that you are using adblocking plugin in your browser.
The revenue we earn by the advertisements is used to manage this website, we request you to whitelist our website in your adblocking plugin.
Site is Blocked
Sorry! This site is not available in your country.