How secure is Apache?
Just curious to learn how secure a default Apache install is? I just placed a server into production using a SuSE Linux box running Apache 2.0. I enabled port:80 in IPTABLES and published my HTML in the /srv/www/htdocs file. The only services that I'm running is SAMBA and Apache. I'm using SAMBA to get to my root Web directory for Web site updating.
Apache is pretty much secure by default.. as long as you don't have an old version that might be vulnerable or something.
And if your paranoid there is always mod_ssl.
Not that paranoid
The server is already behind two firewalls. Lots of routing going on.