secure networks

Wear-IT-All is a department store chain which is evolving in textile market due to its trend setter clothing products. The company has recently decided to host a web server in their network to account for an online shopping portal in order to cater increased demand for products and to strengthen its market. The company deployed a flexible, popular and open source http server - Apache 2.0, which can also make use of server-side scripting tools so as to facilitate dynamic web contents, on a CentOS Linux Server. The implementation was carried out by a system administrator trainee who had a very little understanding about server and network security. As part of testing he connected the web server to the internet and after a few days of monitoring he noticed that someone from a trusted IP address has been conducting TCP scans on the network. So, the company is worried that someone might be planning to attack the web server in the nearfuture. As a senior network systems administrator, your task is to propose a secure solution by implementing and configuring appropriate security tools so as to secure the server and network from potentially malicious activities. The company’s CIO requires your solution design to cover below requirements:  Implementing ModSecurity with rules in place to protect the apache web server against SQL injection and Cross site scripting. (ModSecurity rules must be configured and included in the device configuration summary table.)  Identifying at least 6 possible threats towards the CentOS Linux Server. You must also provide solutions to those threats.  Identifying at least 6 threats towards the Apache web servers (other than SQL injection and Cross site scripting which is part of the first requirement). You must also provide solutions to those threats.  Identifying at least 4 threats towards the network and protecting the network by implementing security solutions  Including at least one test machine in your design to be able to test your security design.