Debian/Ubuntu Tips and Tricks

Debuntu

Debian/Ubuntu Tips and Tricks

How-To: Apache web server basic security measures

Posted by chantra on 30th July 2006

This entry is part 1 of 2 in the series How-To: Apache web server basic security measures

While running a HTTP server such as Apache, there is a few step an administrator have to take in order not to get easily hacked. The very basic one is to hide from the outside which software version and operating system version are running.

Read the rest of this entry »

Tags:
Posted in Administration, HowTo, HTTP | No Comments »

How-To: Apache web server basic security measures — page 2

Posted by chantra on 30th July 2006

This entry is part 2 of 2 in the series How-To: Apache web server basic security measures

3. PHP:

Another way to hide which PHP version you are running can be achieved through php.ini.
Php as a directive of its own in order not to be too verbose, this is the variable called expose_php. Turning this one to Off will avoid php telling that it is running. In the following output, I had ServerTokens set to Full and expose_php to Off:
Read the rest of this entry »

Tags:
Posted in Administration, HowTo, HTTP | No Comments »