Hacking Linux Exposed

About
Authors
Contents
Reviews
Foreword
Purchase

Articles
Books
Sourcecode
Tools
Errata

Home

 


(view this code in a separate window)

#
# The following snippets are useful in
# configuring your Apache webserver to
# be a bit more paranoid.  And it
# isn't paranoia if they really are out
# to get you....


<Files ~ "\.bak$">
    Order allow,deny
    Deny from all
</Files>

<FilesMatch "\.old$">
    Order allow,deny
    Deny from all
</FilesMatch>

<Files .htaccess>
    Order allow,deny
    Deny from all
</Files>

<Directory /usr/local/apache/htdocs/my_private_dir>
  AuthType        Basic
  AuthName       "My Private Directory"
  AuthUserFile    /usr/local/apache/misc/my_private_dir.htpasswd
  require         valid-user
</Directory>

<Location /server-status/>
    SetHandler server-status
    Order deny,allow
    Deny from all
    Allow from localhost
</Location>

<Location /server-info>
    SetHandler server-info
    Order deny,allow
    Deny from all
    Allow from .example.com
</Location>