Found a great article in TechNet Magazine from Marnie Hutcheson, it’s covering:
– Prevent automated attacks from reaching legitimate Web domains
– Automatically divert attacks into a dead end
– Get a single log that shows all attack traffic
In this article, I will present an easily implemented strategy that uses HTTP 1.1 host headers to divert port 80 attacks away from unsecured public Web sites into a dead end where they can’t do damage.
There’s also a good checklist in the sidebar, with Hardening Your Web Server.
Read the full article at source