This document provides an overview of content server security challenges and best practices. It discusses determining risks and threats, establishing security policies, identifying vulnerabilities and implementing countermeasures for protection, detection and reaction. Specific recommendations are made for securing the network, applications and customizations against common attacks like cross-site scripting and direct port access. The document emphasizes using a risk management approach to minimize costs while lowering security risks.