Article Per Year (5 Year)
p-Index From 2021 - 2026
0.23
P-Index
This Author published in this journals
All Journal Jurnal Ilmu Komputer dan Sistem Informasi
Danny Sihombing
Universitas HKBP Nommensen
Computer Science & IT Library & Information Science

Published : 1 Documents Claim Missing Document
Claim Missing Document
Check
Articles

Found 1 Documents
Search

 1 
Hardening Keamanan Server eOffice Apache dengan TLS 1.3 dan Fail2ban Parulian Parulian; Baringin Sianipar; Danny Sihombing
Jurnal Ilmu Komputer dan Sistem Informasi Vol. 5 No. 2 (2025): Mei 2026
Publisher : LKP Unity Academy

Show Abstract | Download Original | Original Source | Check in Google Scholar | DOI: 10.70340/jirsi.v5i2.348

Abstract

The security of campus digital services has become increasingly critical due to the rising intensity of automated attacks such as brute-force attempts, vulnerability scanning, and file upload exploitation targeting web-based administrative systems. The eOffice server of Universitas HKBP Nommensen, which serves as the central platform for document management and official correspondence, is also exposed to such threats. This study aims to enhance server security by implementing a defense-in-depth hardening strategy on Apache 2.4. The methodology includes the activation of TLS 1.3 for modern encrypted communication, the implementation of OWASP-compliant security headers, directory isolation to restrict malicious file execution, and the deployment of Fail2ban as a log-based Intrusion Prevention System (IPS) using a multi-jail approach. Evaluation was conducted using SSL Labs, SecurityHeaders.com, and attack log analysis. The results demonstrate significant improvements, highlighted by an upgrade in SSL rating from grade B to A+ and an increase in Security Headers rating to Grade A. In addition, the implemented IPS proved effective in detecting and mitigating automated attacks in real time. In conclusion, the combination of Apache hardening, modern TLS configuration, and log-based intrusion prevention significantly enhances the resilience of eOffice services and can be readily replicated by other institutions with limited resources.
Co-Authors Baringin Sianipar Parulian Parulian