I have set up a Debian 12 (Bookworm) host and went through some basic steps to install Apache2 and activate SSL/HTTPs on the backend. Http disabled.
As far as I know the usual tool for managing/installing packages is apt-get update & apt-get upgrade
Even with http disabled and a SSL certificate, the webserver is still accessible publicly, so I was wondering if there are any tips or best practices to keep a webserver patched and secure as best as it can.
•
Not a programming related question, hence off-topic here - try https://unix.stackexchange.com/questions or https://superuser.com/questions/tagged/linux. If you repost over there you may need to post your actual apache config, no one can guess what you actually configured.
You could configure the system to perform unattended upgrades if you do not wish to maintain it manually very often. See https://linuxcapable.com/how-to-configure-unattended-upgrades-on-debian-linux/
