Wear-IT-All is a department store chain which is evolving in textile market due to its trend setter
clothing products. The company has recently decided to host a web server in their network to
account for an online shopping portal in order to cater increased demand for products and to
strengthen its market.
The company deployed a flexible, popular and open source http server - Apache 2.0, which can also
make use of server-side scripting tools so as to facilitate dynamic web contents, on a CentOS Linux
Server. The implementation was carried out by a system administrator trainee who had a very little
understanding about server and network security. As part of testing he connected the web server to
the internet and after a few days of monitoring he noticed that someone from a trusted IP address
has been conducting TCP scans on the network. So, the company is worried that someone might be
planning to attack the web server in the nearfuture.
As a senior network systems administrator, your task is to propose a secure solution by
implementing and configuring appropriate security tools so as to secure the server and network
from potentially malicious activities.
The company’s CIO requires your solution design to cover below requirements:
Implementing ModSecurity with rules in place to protect the apache web server against SQL
injection and Cross site scripting. (ModSecurity rules must be configured and included in the
device configuration summary table.)
Identifying at least 6 possible threats towards the CentOS Linux Server. You must also
provide solutions to those threats.
Identifying at least 6 threats towards the Apache web servers (other than SQL injection and
Cross site scripting which is part of the first requirement). You must also provide solutions to
Identifying at least 4 threats towards the network and protecting the network by
implementing security solutions
Including at least one test machine in your design to be able to test your security design.