apache directory visibility
Greetings,
I am rebuilding a machine that has been hacked into, and I am in need of some apache help. I have a RH 9.0 with: httpd-2.0.40-21.9 installed. Here is what is occuring: http://machine.domain.net works, but comes up with the "Apache 2.0 Test Page". If i point a browser to: http://machine.domain.net/specified_dir i get a webpage that I placed in the machine dir (using an index.html file). How do I get rid of this test page and put in a listing of all the directories that I have to view on my webpage (i.e. Index page of the webpage dirs). If anyone can help, I'd greatly appreciate it. zepplin611 |
Hello again,
I figured this one out: There is something called: Auto-Index, located within the /etc/httpd/conf/httpd.conf file: # Disable autoindex for the root directory, and present a # default Welcome page if no other index page is present. # #<LocationMatch "^/$"> # Options -Indexes # ErrorDocument 403 /error/noindex.html #</LocationMatch> By commenting this block out, I was given an index to my listed dirs. Does anyone know if this creates a security problem in any way? Regards, Zepplin611 |
All times are GMT -5. The time now is 09:24 PM. |