Skip to content
/ secwebserv Public

Apache HTTPD Web Server with NGINX ModSecurity WAF Reverse Proxy and PostgreSQL Database.

License

GPL-3.0 license
0 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

igoforth/secwebserv

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

15 Commits
httpd
httpd
 
 
nginx
nginx
 
 
postgres
postgres
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
docker-compose.yml
docker-compose.yml
 
 

Repository files navigation

Secure Web Server

Apache HTTPD Web Server with NGINX ModSecurity WAF Reverse Proxy and PostgreSQL Database

This project fulfills all business/functional requirements for contest submission and also includes WAF HTTPS/TLS, Bootstrap, logging, and an advanced web application firewall.

If I were to improve upon this design, I would do:

  1. TLS all the way to the database
  2. Registration system
  3. Restrict upload functionality to logged in users
  4. Diagnose and better control WAF false positives
  5. Store file upload and session management in Postgres

This project uses HTML, CSS, JavaScript, PHP, and SQL.

Configure

  1. docker compose build
  2. docker compose up |& tee docker.log

Credentials

Website login: secwebserv:ze$2bQeSQR8D6C

Postgres credentials: postgres:S63^oXgRT!d&tQ

Use

Navigate to https://localhost/

Remove

  1. docker compose down -v
  2. docker image prune -a (remove unreferenced dangling images)

About

Apache HTTPD Web Server with NGINX ModSecurity WAF Reverse Proxy and PostgreSQL Database.

Resources

Readme

License

GPL-3.0 license
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages