- user : root
- host : grodoudou.seizam.com
- date : 08/06/12 14:07
- curpath : /root
- Securing Apache2
- Edit /etc/apache2/conf.d/security, see [2]
[email protected]# /etc/init.d/apache2 restart
[email protected]# a2enmod status
- Edit /etc/apache2/sites-enabled/050-sys-admin-tools, see [3]
[email protected]# /etc/init.d/apache2 restart
- [2] Edit /etc/apache2/conf.d/security
--- old 2012-06-08 14:09:31.000000000 +0200
+++ new 2012-06-08 14:11:52.000000000 +0200
@@ -7,7 +7,7 @@
#
-#<Directory />
-# AllowOverride None
-# Order Deny,Allow
-# Deny from all
-#</directory>
+<Directory />
+ AllowOverride None
+ Order Deny,Allow
+ Deny from all
+</directory>
@@ -25,5 +25,3 @@
#
-#ServerTokens Minimal
-ServerTokens OS
-#ServerTokens Full
+ServerTokens Prod
@@ -37,4 +35,4 @@
#
-#ServerSignature Off
-ServerSignature On
+ServerSignature Off
+#ServerSignature On
- [3] Edit /etc/apache2/sites-enabled/050-sys-admin-tools
--- old 2012-06-08 14:18:18.000000000 +0200
+++ new 2012-06-08 14:20:01.000000000 +0200
@@ -67,2 +67,12 @@
+ # server-status
+ # -------------
+
+ <Location /status>
+ SetHandler server-status
+ order deny,allow
+ deny from all
+ allow from 127.0.0.1
+ </location>
+
ErrorLog ${APACHE_LOG_DIR}/error.log