Jump to content

Apache help


Pwnious
 Share

Recommended Posts

If you do a normal install of Mandriva ( 2005 LE or 2006 )

the default top page of the http server page will be at:

 

/var/www/html/index.html

 

I would suggest, under root, copying this file

to index_tmp.html and creating your own if you

wish. But, do not use this directory for your

webpages. Create users and put html content in

their own public_html directories.

 

Note. There is a very big difference between

how http is handled between Mandriva 2005 LE

and earlier and Mandriva 2006. Due to transgressions

in the past Mandriva has made http default not

installed and running for users as against default

turned on in the past. In fact back at Mandrake 9.2

the proxy was default turned on opening that version

to zombie attacks. Believe me I know having been

through all of that.

 

Install 2006 in it's default modes including Apache

httpd. Set up your contrib, main and update urpmi

sources. Using MCC install drakwizard. That will

put a new tab in MCC titled Share. Using Share you

can set up your Apache httpd 2.0 and FTP servers

for users. Use the default User directory public_html.

 

I end up with something like this:

 

http://66.159.200.93/~wilcal/

 

or in your case:

 

http://redtiger.game-server.cc/~gamers/

 

but in a very controlled environment. The spiders,

hackers and crackers will go after 66.159.200.93.

In your case: http://redtiger.game-server.cc

So you can put into /var/www/html/index.html how

much or how little you want somebody to know about

the website(s) on your server.

 

Monitor very closely:

 

/var/log/httpd/access_log

/var/log/httpd/error_log

 

look at all of the hits on your server noting

especially things like Windows server attacks

and cracks. I also use webmin and on a daily basis

track all of the traffic through the sites and

the number of errors returned ( 400 errors ).

If the number of errors increase dramatically or

you cannot account for the bandwidth your httpd

server is using you have a (BIG) problem. Right now

I am measuring about .045% unaccounted for

traffic. That traffic is hack and crack attempts.

 

A couple years ago I was using Mandrake 9.2 with

Apache 1.3.28 which had default left an open

proxy running at install. After about 8 months

running clean my server was discovered by a

Chinese hacker who started to use it as a

way to proxy false click through traffic.

Quite an interesting scam. Anyway I, and many

other Mandrake Users, discovered the open Proxy's

and turned it all off.

 

IMO. Be very carefull running an Apache server

on your Mandriva server. You _WILL_ be attacked

agressively and constantly. Use a hardware firewall

router with only Port 80, and maybe 21, open to the

world. Also weekly make sure your system has all the

latest updates.

Link to comment
Share on other sites

I'd suggest adding these lines to your httpd.conf or apache2.conf depending on what your using:

 

ServerTokens Prod
ServerSignature Off

 

this will stop the version information being shown, so will make it hard for someone to find vulnerabilities if your using a version that is hackable unless the update has been applied to stop it.

Link to comment
Share on other sites

  • 4 weeks later...

You need to set the security rights. So if the directory is calle forums you would then type:

 

chown -R /var/www/html/forums apache:apache

 

if that doesn't work, you then need to change access permissions with chmod.

Link to comment
Share on other sites

The way to check is do this:

 

rpm -qa php

 

it might have installed version 4, but php5 is also available. I'd go with php4, but run the command above to be sure.

Link to comment
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

Loading...
 Share

×
×
  • Create New...