Making Apache Server more secure

  • Marcus Maximus
  • Novice
  • Novice
  • Marcus Maximus
  • Posts: 15

Post 3+ Months Ago

Didn't know where i should post this query

I'm using apache 2.2.4 on windows xp and was reading up on how to make the server more secure. I want to try and add a bit more security but im not having much success.

1) I want to hide Apache version number etc. so i following the info i got from the web but it didn't work

ServerSignature Off
ServerTokens Prod (also tried ProductOnly)

2) I made sure that files outside the webroot are not served(is this a good idea) I think this worked
<Directory />
Order Deny, Allow
Deny from All
Options NOne
Allowoverride None
</ Directory>

3) I tured off multiple options to the web server i think this worked

<Directory "mywebdirectory">
Options None
Allowoverride All (Is this a good idea)
Order allow, deny
Allow from all

Any further information would be a great help

Post Information

  • Total Posts in this topic: 1 post
  • Users browsing this forum: No registered users and 8 guests
  • You cannot post new topics in this forum
  • You cannot reply to topics in this forum
  • You cannot edit your posts in this forum
  • You cannot delete your posts in this forum
  • You cannot post attachments in this forum

© 1998-2017. Ozzu® is a registered trademark of Unmelted, LLC.