LinuxQuestions.org

LinuxQuestions.org (/questions/)
-   Linux - Security (https://www.linuxquestions.org/questions/linux-security-4/)
-   -   Removing security features of apache = vulnerability? (https://www.linuxquestions.org/questions/linux-security-4/removing-security-features-of-apache-%3D-vulnerability-271878/)

MooCows 12-30-2004 09:15 AM

Removing security features of apache = vulnerability?
 
I'm using a machine behind a router firewall as a development machine. I'm wondering if (while logged on as a normal user) removing the security functions of apache would leave me open for any vulnerabilities, even though I'm only using it for localhost testing (not remote access).

TruckStuff 12-30-2004 09:54 AM

If Apache is truly only listening on 127.0.0.1, than you should be OK. If Apache is listening on your local IP (e.g. 192.168.1.10), then you would be vulnerable. Run netstat -ln. If you see something like "0.0.0.0:80" or "192.168.1.10:80," you would be vulnerable. If, however, you see "127.0.0.1:80," you should be OK.

Also, why do you want to do this? Perhaps it would be better to start with what you are trying to accomplish.


All times are GMT -5. The time now is 08:59 AM.