Deployed and secured an Apache web server with HTTPS, focusing on SSL/TLS configuration hardening and vulnerability analysis. Evaluated encryption strength and protocol security to ensure compliance with modern web security standards.
- Web Server: Apache HTTP Server
- Security: OpenSSL, SSL/TLS
- Assessment Tools: Qualys SSL Labs
- Configured HTTPS using OpenSSL with secure certificate generation and key management
- Hardened SSL/TLS protocols and cipher suites to mitigate weak encryption risks
- Disabled deprecated protocols and insecure cipher configurations
- Analyzed server security posture using Qualys SSL Labs
- Identified and remediated SSL/TLS misconfigurations
- Improved server security rating through iterative hardening
- Provisioned an Ubuntu Linux VM and installed Apache HTTP Server.
- Generated SSL certificates using OpenSSL and configured HTTPS on Apache.
- Hardened SSL/TLS configuration by disabling weak protocols and cipher suites.
- Validated server security posture using Qualys SSL Labs scans.
- Reviewed scan results and applied configuration improvements to achieve stronger security ratings.
Result: Achieved improved SSL/TLS security posture through iterative configuration hardening.
- Strengthened understanding of secure web server deployment
- Hands-on experience with SSL/TLS hardening and vulnerability assessment
- Practical exposure to real-world web security misconfigurations