troubleshooting Question

Apache tomcat vulnerabilities

Avatar of Pau Lo
Pau Lo asked on
Apache Web ServerSecurityVulnerabilities
5 Comments1 Solution437 ViewsLast Modified:
1) As a rough figure how often do Apach release security patches for Tomcat? I.e. per month, per week, how many?

2) And what tools can admins use to ensure that their apache is kept up to date? Do apache provide any free ones?

3) What would auditors look for when reviewing pacth management procedures for non MS software? For example if you did a scan and it said "apache out of date", they may apply a patch and then rescan and its gone, only for next week 5 more patches to come out and then its insecure again, and the process isnt managed.

4) So what demonstrates good patch management, i.e. what visually shows the auditor that this problem wont happen again?
Join the community to see this answer!
Join our exclusive community to see this answer & millions of others.
Unlock 1 Answer and 5 Comments.
Join the Community
Learn from the best

Network and collaborate with thousands of CTOs, CISOs, and IT Pros rooting for you and your success.

Andrew Hancock - VMware vExpert
See if this solution works for you by signing up for a 7 day free trial.
Unlock 1 Answer and 5 Comments.
Try for 7 days

”The time we save is the biggest benefit of E-E to our team. What could take multiple guys 2 hours or more each to find is accessed in around 15 minutes on Experts Exchange.

-Mike Kapnisakis, Warner Bros