Lead Image © Tatiana Popov, 123RF.com
Security first with the Hiawatha web server
Small but Safe
Security on the Internet is vital. The Hiawatha web server [1], created by Hugo Lensink, is a small (and free) web server that subscribes to the principle "security by default." This article shows how to install and use Hiawatha.
You'll get the most benefit from Hiawatha if you run web applications, such as a CMS or any PHP website that occasionally gets hit by vulnerabilities (and they all do, of course). Hiawatha adds an extra layer of security, delivering ready-to-use rewrite rules for different CMS options.
In comparison with Apache and Nginx, the Hiawatha configuration file is much more concise and easier to edit. Hiawatha makes it very easy to switch on the security features for a CMS, for example; whereas setting up security for a CMS in Nginx or Apache will require the additional work of configuring modules and rules and testing them. See the box titled "Pros and Cons" for a summary of Hiawatha benefits and costs.
Pros and Cons
Why use the Hiawatha web server?
- Intrusion detection (IDS) and prevention tools are ready-to-use. On-board tools protect your sites from SQL injection, cross-site scripting (XSS), denial of service (DOS), and other attacks. Hiawatha also supports banning; when it detects an attack, it bans the attacking IP address automatically, thus also slowing or stopping other attacks the intruder might be attempting.
- Security by default. The default configuration file serves your TLS with perfect-forward-secrecy (PFS), does not use OpenSSL, and includes other safety features. The SSL Labs website gives Hiawatha an A-rating, where Apache has a C.
- Lean. Hiawatha has a small footprint, so it is usable on old machines, or in my case, as a means for serving many websites on a new machine.
- Easy to configure. Hiawatha has a
Buy this article as PDF
(incl. VAT)
Buy ADMIN Magazine
US / Canada
UK / Australia
Related content
-
The light-footed Hiawatha web server
Hiawatha is a lightweight web server with a variety of features that distinguish it from heavyweights such as Apache. -
Getting a free TLS certificate from Let's Encrypt
A free TLS certificate from Let's Encrypt means you can add encryption to your network for no cost, so you don't have any more excuses for failing to encrypt. -
WordPress, Joomla, and Drupal compared
Open source content management systems have an abundance of extensions scattered across the web. We compare the features of three CMSs against various consumer requirements.
Subscribe to our ADMIN Newsletters
Subscribe to our Linux Newsletters
Find Linux and Open Source Jobs
Most Popular
Support Our Work
ADMIN content is made possible with support from readers like you. Please consider contributing when you've found an article to be beneficial.
