Apache server administrators: Have you hidden your status pages? According to a study of 10 million websites released last week, more than 2,000 sites -- including big-name businesses such as Cisco, ...

Because their status pages are left unprotected, potentially sensitive information is exposed that hackers can use to better plan attacks against websites Many Apache Web servers, including those ...

Continuing the theme from my previous column on the relative security of Internet Information Service (IIS) vs. Apache, I’ve come across more studies to support my initial conclusion. If you remember, ...

Don’t freak: It’s got nothing to do with Log4Shell, except it may be just as far-reaching as Log4j, given HTTPD’s tendency to tiptoe into software projects. Don’t duck at the latest mention of Apache: ...

COMMENTARY--One of the most contentious issues in the security community today is how and when those who discover vulnerabilities communicate their knowledge to both the companies that make the ...

Continuing the theme from my previous column on the relative security of Internet Information Services (IIS) vs. Apache, I’ve come across more studies to support my initial conclusion. If you remember ...

As part of their effort to speed delivery of Web pages, Google engineers have released a module for the Apache Web server software that augments the basic protocols used for carrying Web traffic ...

Apache DevLake™ and Apache Grails® join The ASF’s growing roster of Top-Level Projects underscoring strength of Foundation’s open source communitiesWilmington, DE, Oct. 07, 2025 (GLOBE NEWSWIRE) -- ...

Users of the open source Apache HTTP Server who have updated to recently released version 2.4.49 are being urged to update to 2.4.50 immediately to apply fixes for a newly disclosed zero-day that is ...

On Thursday, Apache released additional fixes for CVE-2021-41773 as government agencies like CISA warned that one vulnerability related to the Apache HTTP Server issue had been exploited in the wild.