-
Notifications
You must be signed in to change notification settings - Fork 0
cool configs
this page contains few configurations which might help in developing and providing security to the applications:
Security - disable directory listing I heard that one of the "must do's" on setting a secure apache webserver environment is to disable directory browsing. I want to do this. Do I carefully remove "Indexes" in my htpd.conf file and or change "Indexes" to "-Indexes":
<Directory "/www/vhosts/localhost"> Options Indexes FollowSymLinks Order allow,deny Allow from all
to:
<Directory "/www/vhosts/localhost"> Options FollowSymLinks Order allow,deny Allow from all
or:
<Directory "/www/vhosts/localhost"> Options -Indexes FollowSymLinks Order allow,deny Allow from all
Then restart the server?
Security phpmyadmin
when we want to handle our phpmyadmin from remote client we can always use the following configurations in phpmyadmin.conf file of you apache webserver. Allow from all
if you want to access it from only localhost, than
<IfModule php5_module>
Allow from 127.0.0.1
</IfModule>
note: always have a backup first. In case only you are responsible for miss configurations.