Nginx HTTP Server typically runs under the default nginx, www-data user account (or another non-privileged account). It is important to ensure that Nginx is not running under a privileged account, ...

Microsoft this week offered yet another preview of a new Operations Management Suite (OMS) feature, this time focused on checking the security compliance of Windows Web servers. The new Web Security ...

When the security industry thinks about breaches caused by human error, the image of an employee accidentally clicking on a malicious link in a phishing email often comes to mind. But to err is human, ...

Continuing the theme from my previous column on the relative security of Internet Information Service (IIS) vs. Apache, I’ve come across more studies to support my initial conclusion. Since a single ...

Continuing the theme from my previous column on the relative security of Internet Information Service (IIS) vs. Apache, I’ve come across more studies to support my initial conclusion. If you remember, ...

Digitization is opening a myriad of possibilities for businesses to create and capture value but it also creates many possibilities for those who wish to steal from them, from their customers and ...

Add a description, image, and links to the web-server-security topic page so that developers can more easily learn about it.

Video conferencing company Zoom has defended its use of a local web server on Macs as a "workaround" to changes that were introduced in Safari 12. The company said in a statement that it felt running ...