My suggestion for dealing with Apache on Unix and Windows is to disable all the modules that you do not use. For instance, if your site contains no pHp, there is no reason to have the module. The more modules you have, the more chances that there is a security hole.