MRatWork Forum by Mustafa Ramadhan

Sawo Project - Kloxo-MR Discussions => Kloxo-MR Technical Helps => Topic started by: RucLinux on 2014-04-11, 13:44:39

Title: How to fix server vulnerability?
Post by: RucLinux on 2014-04-11, 13:44:39

# vi /etc/httpd/conf/httpd.conf
No related characters channeling, New characters channeling no effect. Which one should I modify the configuration file? Thank you

Vulnerability Information:

Quote

[warning] found directory enabled automatic directory list function

Method, modify the httpd.conf configuration file, find the Options Indexes FollowSymLinks, modified for Options -Indexes;
Methods two, modify the.Htaccess configuration file in the WWW directory, adding Options -Indexes. Recommend.

Quote

Server enable TRACE Method

Apache 2.0.55 or later server, you can add at the end of httpd.conf:
TraceEnable off

Title: Re: How to fix server vulnerability?
Post by: RucLinux on 2014-04-11, 14:05:33

apache httpd.conf file can be modified, then, lighttpd which files need to modify it?
Can you teach me way? apache which files should be modified? lighttpd which files should be modified? Thank you

Title: Re: How to fix server vulnerability?
Post by: MRatWork on 2014-04-12, 09:58:13

You don't need modified if in every directory exists index.html/index.php.