> If and when, however, you receive notification from Red Hat or the Fedora > Project that a vulnerability has been found in Apache, upgrade to the > newest version IMMEDIATELY when they release a patched update. > > These and other attacks are also the reason you should (a) shut down any > services you don't need to use or don't need to offer, and (b) protect your > box with a firewall so that only the ports you _want_ open are actually > reachable. One other item you can add to your defenses (although not as important IMO as what was mentioned above) is to add an IDS to your system (such as Snort) www.snort.org. If your new to Snort or just want some more ideas, theres some recent Snort books released. And just like keeping your system patached, you need to keep your IDS patched as well. -Greg