Enable and Configure mod_security: a Web Application Firewall (WAF)
Enable and Configure mod_evasive: Denial of Service prevention (works w/local firewalls)
DOSHashTableSize 3097 DOSPageCount 20 DOSSiteCount 100 DOSPageInterval 1 DOSSiteInterval 1 DOSBlockingPeriod 10Apply "SymLinksIfOwnerMatch" option to virtual hosts' document root*
Options FollowSymLinks SymLinksIfOwnerMatch* - Apache symlinks restrictions are not true security, but it doesn't hurt to enable them