Linode Forum
Linode Community Forums 		 FAQFAQ    SearchSearch    MembersMembers      Register Register 
 LoginLogin [ Anonymous ] 
Post new topic  Reply to topic

Board index » Linux Community Forums » Web Servers and Web App Development
  Previous topic | Next topic 
Author Message
sastradhar
PostPosted: Thu Dec 24, 2015 3:40 pm 
Offline

Joined: Thu Dec 24, 2015 3:29 pm
Posts: 1
To my surprise I discovered that directory listing of apache is enabled by default on the apache web server on my ubuntu server 14.04.
This could be used to rip your back end code.
Please open /etc/apache2/apache2.conf in your favourite editor
and remove the work Indexes from the following part

<Directory /var/www/domain.com/pdfs>
Options Indexes FollowSymLinks
</Directory>

Dont forget to restart the apache by # /etc/init.d/apache2 restart
Hope this helps others to secure their servers.
I got a big scare when I discovered this being enabled by default.
Top
   
Reply with quote  
Display posts from previous:  Sort by  
Post new topic  Reply to topic

Board index » Linux Community Forums » Web Servers and Web App Development


Who is online

Users browsing this forum: No registered users and 1 guest

You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum

Search for:
Jump to:  
RSS

Powered by phpBB® Forum Software © phpBB Group