Review MapServer security best practices
A MapServer community member (or maintainer?) created this blog post about following good security practices for a MapServer instance. It should be reviewed against what we're currently doing and any issues fixed: