Last active
August 29, 2015 14:03
-
-
Save JrCs/43eddee7a62068698031 to your computer and use it in GitHub Desktop.
Fichier de sécurisation de apache
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
# Cette configuration permet de mieux sécurisé le serveur | |
# Il faut placer ce fichier dans le répertoire /etc/httpd/conf | |
# (et non pas /etc/httpd/conf.d) et rajouter A LA FIN du fichier | |
# /etc/httpd/conf/httpd.conf une ligne: | |
# Include conf/security.conf | |
# Prevents server from giving version info on error pages. | |
ServerSignature Off | |
# Prevents server from giving version info in HTTP headers | |
ServerTokens Prod | |
# Disable user dir for root | |
UserDir disabled root | |
# Deny access to the root file system. | |
<Directory /> | |
Order Deny, Allow | |
deny from all | |
Options None | |
AllowOverride None | |
</Directory> | |
# Désactivation des extensions .php si le module n'est pas chargé | |
# On peut voir les modules chargés avec la commande: | |
# apachectl -M | |
# Cela permet d'éviter de voir du code en clair et potentiellement | |
# des mots de passes | |
<IfModule !php5_module> | |
<Files ~ '\.php$'> | |
Order allow,deny | |
Deny from all | |
Allow from none | |
</Files> | |
<Files ~ '\.phps'> | |
Order deny,allow | |
Allow from all | |
</Files> | |
</IfModule> |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment