Apache :: Apache Virtual Configs Standard Hardened Setups

ArtM · Joined: 23 Feb 2006 Posts: 59 Location: Bedford NS Canada

Any suggestions and/or example Virtual Configs appreciated. I'm concerned about security & flexibility in an Apache 2.2 PHP 5 MySQL Perl setup. What I have so far is below:

----------------------------------------------------------------
#
# Testing MyDomain.ca
#

<VirtualHost *:80>

ServerName testing.MyDomain.ca

ServerAdmin webmaster@MyDomain.ca

DocumentRoot "X:/Webs/MyDomain.CA/Testing"

DirectoryIndex "index.html"

Options Indexes

IndexOptions FancyIndexing FoldersFirst

SetEnvIf Remote_Addr "192\.168\.007\.1[2-4][0-9]" lanip
ErrorLog "X:/LOGDATA/Apache/Virtuals/MyDomain/MYDTesting-errors.log"
CustomLog "X:/LOGDATA/Apache/Virtuals/MyDomain/MYDTesting-access.log" common env=!lanip

Options Indexes FollowSymLinks +ExecCGI

ScriptAlias /cgi-bin/ "X:/Webs/MyDomain.CA/Testing/cgi-bin/"

<Directory "X:/Webs/MyDomain.CA/Testing/cgi-bin">
AllowOverride None
Options +ExecCGI
Order allow,deny
Allow from all
</Directory>

</VirtualHost>

---------------------------------------------------------------------

Steffen

The config looks standard.

What kind of "security & flexibility" do you want ?

For security I strongly advise to use mod_security.

Steffen

ArtM · Joined: 23 Feb 2006 Posts: 59 Location: Bedford NS Canada

James Blond

You are using a router. If you can configure the ports. Only free needed ports.

List of needed Ports in buisness companys
* = optional

Jorge · Joined: 12 Mar 2006 Posts: 376 Location: Belgium

Flexibilyt you ask?

try: