You are viewing a plain text version of this content. The canonical link for it is here.
Posted to users@httpd.apache.org by w01F <w0...@gmail.com> on 2005/12/10 03:54:06 UTC
[users@httpd] How to hide http service?
I want my Apache server to refuse all connections except localhost ,
and make http service invisible to other machine in case to be hacked.
Can anyon help me ? Thanks in advance!
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
" from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org
Re: [users@httpd] How to hide http service?
Posted by myhapwcforever <my...@gmail.com>.
You can use the reject .
Or, you should bind the ipaddress on the 127.0.0.1.
----- Original Message -----
From: "Rich Bowen" <rb...@rcbowen.com>
To: <us...@httpd.apache.org>
Sent: Sunday, December 11, 2005 2:29 AM
Subject: Re: [users@httpd] How to hide http service?
> ludi wrote:
> > Use the "iptables"
>
> Probably not a good idea, since the time that iptables gets reset, it
> will be exposed. Better to just not listen on that interface.
>
> >
> > On 12/10/05, *w01F* <w0x01f@gmail.com <ma...@gmail.com>> wrote:
> >
> > I want my Apache server to refuse all connections except localhost ,
> > and make http service invisible to other machine in case to be hacked.
> >
> > Can anyon help me ? Thanks in advance!
> >
> >
> >
> > ---------------------------------------------------------------------
> > The official User-To-User support forum of the Apache HTTP Server
> > Project.
> > See <URL:http://httpd.apache.org/userslist.html> for more info.
> > To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
> > <ma...@httpd.apache.org>
> > " from the digest: users-digest-unsubscribe@httpd.apache.org
> > <ma...@httpd.apache.org>
> > For additional commands, e-mail: users-help@httpd.apache.org
> > <ma...@httpd.apache.org>
> >
> >
>
>
> --
> Rich Bowen
> rbowen@rcbowen.com
>
> ---------------------------------------------------------------------
> The official User-To-User support forum of the Apache HTTP Server Project.
> See <URL:http://httpd.apache.org/userslist.html> for more info.
> To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
> " from the digest: users-digest-unsubscribe@httpd.apache.org
> For additional commands, e-mail: users-help@httpd.apache.org
>
Re: [users@httpd] How to hide http service?
Posted by Rich Bowen <rb...@rcbowen.com>.
ludi wrote:
> Use the "iptables"
Probably not a good idea, since the time that iptables gets reset, it
will be exposed. Better to just not listen on that interface.
>
> On 12/10/05, *w01F* <w0x01f@gmail.com <ma...@gmail.com>> wrote:
>
> I want my Apache server to refuse all connections except localhost ,
> and make http service invisible to other machine in case to be hacked.
>
> Can anyon help me ? Thanks in advance!
>
>
>
> ---------------------------------------------------------------------
> The official User-To-User support forum of the Apache HTTP Server
> Project.
> See <URL:http://httpd.apache.org/userslist.html> for more info.
> To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
> <ma...@httpd.apache.org>
> " from the digest: users-digest-unsubscribe@httpd.apache.org
> <ma...@httpd.apache.org>
> For additional commands, e-mail: users-help@httpd.apache.org
> <ma...@httpd.apache.org>
>
>
--
Rich Bowen
rbowen@rcbowen.com
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
" from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org
Re: [users@httpd] How to hide http service?
Posted by ludi <my...@gmail.com>.
Use the "iptables"
On 12/10/05, w01F <w0...@gmail.com> wrote:
>
> I want my Apache server to refuse all connections except localhost ,
> and make http service invisible to other machine in case to be hacked.
>
> Can anyon help me ? Thanks in advance!
>
>
>
> ---------------------------------------------------------------------
> The official User-To-User support forum of the Apache HTTP Server Project.
> See <URL:http://httpd.apache.org/userslist.html> for more info.
> To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
> " from the digest: users-digest-unsubscribe@httpd.apache.org
> For additional commands, e-mail: users-help@httpd.apache.org
>
>
Re: [users@httpd] How to hide http service?
Posted by Colm MacCarthaigh <co...@stdlib.net>.
On Sat, Dec 10, 2005 at 10:54:06AM +0800, w01F wrote:
> I want my Apache server to refuse all connections except localhost ,
> and make http service invisible to other machine in case to be hacked.
>
> Can anyon help me ? Thanks in advance!
If you configure Apache to only Listen on 127.0.0.1 or ::1, this will
be the case.
http://httpd.apache.org/docs/2.2/mod/mpm_common.html#listen
--
Colm MacCárthaigh Public Key: colm+pgp@stdlib.net
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
" from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org