he's mistaken, but it should be
> clarified.
>
--
Allan Liska
[EMAIL PROTECTED]
http://www.allan.org
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Hello Rich,
Sunday, October 28, 2001, 3:26:41 PM, you wrote:
RB> I discovered that some of the links on the "Books about Apache" page are
RB> dead, but I was not able to find where they should go. As a specific
RB> example, Apache Administrator's Handbook by Kabir, is no longer listed
RB> on the
Hello Joshua,
I read it over, and I think it looks really good. It has a lot more
information than the current document, and think it would be a good
replacement.
allan
Thursday, October 11, 2001, 4:07:00 PM, you wrote:
JS> I'd like to know:
JS> 1. Is this better than what is there now?
JS> 2
within SSI. To do
+this replace Options Includes with Options IncludesNOEXEC within the
+Options directive.
+
Non Script Aliased
--
Allan Liska
[EMAIL PROTECTED]
http://www.allan.org
-
To unsubscribe, e-ma
increases security.
+
+
+Another solution is to disable the #exec element within SSI. To do
+this replace Options Includes with Options IncludesNOEXEC within the
+Options directive.
+
Non Script Aliased
--
Allan Liska
[EMAIL PROTECTED]
http://www
e following line in your server configuration
+files:
+
+
+ UserDir disabled root
+
+
+
+Please send any other useful security tips to The Apache
+Group by filling out a http://bugs.apache.org/";>problem report. If you are
+confident you have found a security bug in
e security features
you've configured. Here's one way to do it...
@@ -141,7 +158,7 @@
from those named.
- Protect server files by default
+Protect Server Files by Default
One aspect of Apache which is occasionally misunderstood is the feature
--
Allan Liska
[EMAIL PROTECTED]
. This helps keep server load at a minimum.
+
+
+Another solution is to disable the #exec command withing SSI. To do
+that you use the IncludesNOEXEC option to the
+Options directive.
+
+
+<Directory />
+Options IncludesNOEXEC
+</Directory>
+
--
Allan Liska
[EMAIL PRO
I've cleaned up some of the HTML to make it more in line with the
recommendation in the tutorials, and enhanced the section on Server Side
Includes. If this looks okay, I will start working on some of the other
sections outlined in my earlier proposal.
Please let me know what you think.
Ind
Rich,
Thanks for your comments, please see my answers in-line...
On Mon, 17 Sep 2001, Rich Bowen wrote:
> On Sun, 16 Sep 2001, Allan Liska wrote:
>
> > Hello,
> >
> > As I mentioned earlier this week, I would like to try to improve the
> > layout of the s
Hello,
As I mentioned earlier this week, I would like to try to improve the
layout of the security docs. I'd really like feedback from people
on this list as to how in-depth the documents should go. As an
example, should we explain how to set permissions for optimal
security in an Apac
Hello Rich,
Thursday, September 13, 2001, 10:57:57 PM, you wrote:
RB> On Thu, 13 Sep 2001, Allan Liska wrote:
>> Hello,
>>
>> If no else is working on it, I would like to take a stab at the
>> following action item:
>>
>> * Improving the "secu
Hello,
If no else is working on it, I would like to take a stab at the
following action item:
* Improving the "security docs"
- More content and better organisation.
Thanks!
allan
--
allan
[EMAIL PROTECTED]
http://www.allan.org
---
13 matches
Mail list logo
