You are viewing a plain text version of this content. The canonical link for it is here.
Posted to users@httpd.apache.org by Timothy Stone <ci...@petmystone.com> on 2004/03/25 17:15:24 UTC
[users@httpd] Improving Apache 2 Security ?
List,
I'm following the general security tips for making my staging server
more secure (http://httpd.apache.org/docs-2.0/misc/security_tips.html).
Yet, I'm not sure what the recommended permissions should be for the
modules directory and its contents.
Right now I have (0755):
$ ls -ld modules
drwxr-xr-x 2 root root 4096 Mar 22 12:04 modules
What about it's contents?
Suggestions or best practices welcome.
Warmest Regards,
Tim
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
" from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org
Re: [users@httpd] Improving Apache 2 Security ?
Posted by Joshua Slive <jo...@slive.ca>.
On Thu, 25 Mar 2004, Timothy Stone wrote:
> I'm following the general security tips for making my staging server
> more secure (http://httpd.apache.org/docs-2.0/misc/security_tips.html).
>
> Yet, I'm not sure what the recommended permissions should be for the
> modules directory and its contents.
The only thing that should be important is that nothing should be
writable by any non-root user. I think read/seach/execute permission
should be pretty-much irrelevant.
Joshua.
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
" from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org