You are viewing a plain text version of this content. The canonical link for it is here.

Posted to users@httpd.apache.org by w01F <w0...@gmail.com> on 2005/12/10 03:54:06 UTC

[users@httpd] How to hide http service?

I want my Apache server to refuse all connections except localhost ,
and make http service invisible to other machine in case to be hacked.

Can anyon help me ? Thanks in advance! 



---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org

Re: [users@httpd] How to hide http service?

Posted by myhapwcforever <my...@gmail.com>.

You can use the reject . 
Or, you should bind the ipaddress on the 127.0.0.1.
----- Original Message ----- 
From: "Rich Bowen" <rb...@rcbowen.com>
To: <us...@httpd.apache.org>
Sent: Sunday, December 11, 2005 2:29 AM
Subject: Re: [users@httpd] How to hide http service?


> ludi wrote:
> > Use the "iptables"
> 
> Probably not a good idea, since the time that iptables gets reset, it 
> will be exposed. Better to just not listen on that interface.
> 
> > 
> > On 12/10/05, *w01F* <w0x01f@gmail.com <ma...@gmail.com>> wrote:
> > 
> >     I want my Apache server to refuse all connections except localhost ,
> >     and make http service invisible to other machine in case to be hacked.
> > 
> >     Can anyon help me ? Thanks in advance!
> > 
> > 
> > 
> >     ---------------------------------------------------------------------
> >     The official User-To-User support forum of the Apache HTTP Server
> >     Project.
> >     See <URL:http://httpd.apache.org/userslist.html> for more info.
> >     To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
> >     <ma...@httpd.apache.org>
> >        "   from the digest: users-digest-unsubscribe@httpd.apache.org
> >     <ma...@httpd.apache.org>
> >     For additional commands, e-mail: users-help@httpd.apache.org
> >     <ma...@httpd.apache.org>
> > 
> > 
> 
> 
> -- 
> Rich Bowen
> rbowen@rcbowen.com
> 
> ---------------------------------------------------------------------
> The official User-To-User support forum of the Apache HTTP Server Project.
> See <URL:http://httpd.apache.org/userslist.html> for more info.
> To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
>    "   from the digest: users-digest-unsubscribe@httpd.apache.org
> For additional commands, e-mail: users-help@httpd.apache.org
>

Re: [users@httpd] How to hide http service?

Posted by Rich Bowen <rb...@rcbowen.com>.

ludi wrote:
> Use the "iptables"

Probably not a good idea, since the time that iptables gets reset, it 
will be exposed. Better to just not listen on that interface.

> 
> On 12/10/05, *w01F* <w0x01f@gmail.com <ma...@gmail.com>> wrote:
> 
>     I want my Apache server to refuse all connections except localhost ,
>     and make http service invisible to other machine in case to be hacked.
> 
>     Can anyon help me ? Thanks in advance!
> 
> 
> 
>     ---------------------------------------------------------------------
>     The official User-To-User support forum of the Apache HTTP Server
>     Project.
>     See <URL:http://httpd.apache.org/userslist.html> for more info.
>     To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
>     <ma...@httpd.apache.org>
>        "   from the digest: users-digest-unsubscribe@httpd.apache.org
>     <ma...@httpd.apache.org>
>     For additional commands, e-mail: users-help@httpd.apache.org
>     <ma...@httpd.apache.org>
> 
> 


-- 
Rich Bowen
rbowen@rcbowen.com

---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org

Re: [users@httpd] How to hide http service?

Posted by ludi <my...@gmail.com>.

Use the "iptables"

On 12/10/05, w01F <w0...@gmail.com> wrote:
>
> I want my Apache server to refuse all connections except localhost ,
> and make http service invisible to other machine in case to be hacked.
>
> Can anyon help me ? Thanks in advance!
>
>
>
> ---------------------------------------------------------------------
> The official User-To-User support forum of the Apache HTTP Server Project.
> See <URL:http://httpd.apache.org/userslist.html> for more info.
> To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
>    "   from the digest: users-digest-unsubscribe@httpd.apache.org
> For additional commands, e-mail: users-help@httpd.apache.org
>
>

Re: [users@httpd] How to hide http service?

Posted by Colm MacCarthaigh <co...@stdlib.net>.

On Sat, Dec 10, 2005 at 10:54:06AM +0800, w01F wrote:
> I want my Apache server to refuse all connections except localhost ,
> and make http service invisible to other machine in case to be hacked.
> 
> Can anyon help me ? Thanks in advance! 

If you configure Apache to only Listen on 127.0.0.1 or ::1, this will
be the case. 

http://httpd.apache.org/docs/2.2/mod/mpm_common.html#listen

-- 
Colm MacCárthaigh                        Public Key: colm+pgp@stdlib.net

---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org