GNU libmicrohttpd is a small C library for embedding HTTP server functionality into other applications. It is reentrant, fast, supports HTTP 1.1, and permits listening on multiple ports. The API is simple and still powerful enough to allow programmers to use the entire HTTP feature set. SSL/TLS support is available as an option.
The CyaSSL embedded SSL library is a lightweight SSL library written in ANSI C and targeted for embedded and RTOS environments, primarily because of its small size, speed, and feature set. It is commonly used in standard operating environments and cloud services as well because of its royalty-free pricing and excellent cross platform support. CyaSSL supports industry standards up to the current TLS 1.2 and DTLS 1.2 levels, is up to 20 times smaller than OpenSSL, and offers progressive ciphers such as HC-128, RABBIT, and NTRU.
yaSSL is a C++ based SSL library for embedded and RTOS environments, designed for individuals who prefer to use the C++ language. For a C-based solution, please see CyaSSL. yaSSL supports the industry standards up to TLS 1.2, and also includes an OpenSSL compatibility interface.
Hiawatha is a secure and advanced Web server for Unix. It has been written with security as its main goal. It features advanced access control, prevention of SQL injection and cross-site scripting, banning of clients who try such exploits, the ability to run CGIs under any UID/GID you want, and many other features. These features make Hiawatha an interesting Web server for those who need more security than what the other available Web servers are offering. Hiawatha is also fast and easy to configure.
mod_auth_pubtkt is a simple Web single sign-on (SSO) solution for Apache. It validates authentication tickets provided by the client in a cookie using public-key cryptography (DSA or RSA). Thus, only the login server that generates the tickets needs to possess the private key, while Web servers can verify tickets given only the public key. The implementation of the login server is left to the user, but an example and a library in PHP are provided with the distribution.
mod_jail is an Apache module that supports 1.3.x and 2.x branches. It is similar to mod_chroot, but uses FreeBSD's specific system call "jail", which is more secure than chroot. Thus, it is intended to run on FreeBSD only. This module allows you to run Apache in a secure jail easily, without creating a real jail environment containing a copy of /lib, /libexec, /usr/lib, etc. Also, it is able to change the securelevel within a created jail prison.
Pound is a reverse HTTP proxy, load balancer, and SSL wrapper. It proxies client HTTPS requests to HTTP backend servers, distributes the requests among several servers while keeping sessions, supports HTTP/1.1 requests even if the backend server(s) are HTTP/1.0, and sanitizes requests.
mod_vhs is an Apache 2.2+ Web server module allowing mass virtual hosting without the need for file-based configuration. The virtual host paths are translated from any database supported by mod_ldap or mod_dbd at request time from MySQL, LDAP, PAM, or a system password file. PHP security can be basically auto-configured from the database using this module. Requests are cached by mod_ldap when configured.
Gefest Web Home Server is a simple Web server with a graphical user interface. It can be used without special knowledge. Any user can install and share folders on the Internet or a local network. The server allows you to watch video directly from another PC. Password protection is supported. The server allows you to review all user activity through the server log and activity log.