Apache security

by 0-Day - 02-03-2016, 11:37 PM
Novice
Posts:
25
Joined:
Mar 2016
Likes:
1
Credits:
7
Reputation:
0
1 Year of Service
#1
OP
Posted: 02-03-2016, 11:37 PM
This topic will show you how to quickly and easily protect your apache server.

disable dangerous functions:

Quote:disable_functions = "ini_restore,copy,file_put_contents,ln,readlink,tmpfile,php_ini_scanned_files,posix_isatty,getrlimit,posix,posix_strerror,posix_getgroups,posix_getlogin,set_time_limit,getmypid,chown,getmygid,error_log,posix_get_last_error,session_save_path,ini_get_all,phpinfo,php_uname,closelog,crack_opendict,highlight_file,cat,crack_check,crack_getlastmessage,crack_closedict,ftp_exec,tempnam,chgrp,popen,pclose,posix_getpwuid,proc_get_status,proc_close,proc_open,proc_nice,posix_getgrgid,posix_kill,parse_perms,system,dl,passthru,exec,getcwd,shell_exec,get_loaded_extensions,popen,stream_select,rename,proc_close,proc_get_status,proc_nice,proc_open,escapeshellcmd,escapeshellarg,show_source,posix_mkfifo,mysql_list_dbs,get_current_user,getmyuid,pconnect,link,symlink,pcntl_exec,ini_alter,pfsockopen,leak,apache_child_terminate,posix_kill,posix_setpgid,posix_setuid,proc_terminate,syslog,fpassthru,stream_select,socket_select,socket_create,socket_create_listen,socket_create_pair,socket_listen,socket_accept,socket_bind,socket_strerror,pcntl_fork,pcntl_signal,pcntl_waitpid,pcntl_wexitstatus,pcntl_wifexited,pcntl_wifsignaled,pcntl_wifstopped,pcntl_wstopsig,pcntl_wtermsig,openlog,apache_get_modules,apache_get_version,disk_total_space,diskfreespace,apache_getenv,apache_note,apache_setenv,virtual,chmod,file_upload,delete,deleted,edit,cmd,rename,unlink,mkdir,mv,touch,cp,cd,pico,dir,"

Enable open_basedir:

Find ;open_basedir = or open_basedir = and change your time with directory on your site

Example:
open_basedir = "/var/www/html/"
Junior Member
Posts:
68
Joined:
Mar 2016
Likes:
1
Credits:
0
Reputation:
0
1 Year of Service
#2
Posted: 07-03-2016, 12:45 PM
mod_security is also a good chance to block stuff that looks malicious.
Web Development and Security
Posts:
906
Joined:
Oct 2015
Likes:
64
Credits:
24
Reputation:
100
2 Years of Service
#3
Posted: 08-11-2016, 06:33 AM (This post was last modified: 08-11-2016, 06:34 AM by Ecstasy.)
(08-11-2016, 06:31 AM)Ekon Wrote: Hi there Ekon,

Apple has released iOS 10.1.1 (14B100).
This was released for the following 36 devices:
iPad 4 (GSM)
iPad 4 (Global)
iPad 4 (WiFi)
iPad Air (Cellular)
iPad Air (China)
iPad Air (WiFi)
iPad Air 2 (Cellular)
iPad Air 2 (WiFi)
iPad Mini 2 (Cellular)
iPad Mini 2 (China)
iPad Mini 2 (WiFi)
iPad Mini 3 (Cellular)
iPad Mini 3 (China)
iPad Mini 3 (WiFi)
iPad Mini 4 (Cellular)
iPad Mini 4 (WiFi)
iPad Pro 12.9-inch (Cellular)
iPad Pro 12.9-inch (WiFi)
iPad Pro 9.7-inch (Cellular)
iPad Pro 9.7-inch (WiFi)
iPhone 5 (GSM)
iPhone 5 (Global)
iPhone 5c (GSM)
iPhone 5c (Global)
iPhone 5s (GSM)
iPhone 5s (Global)
iPhone 6
iPhone 6+
iPhone 6s
iPhone 6s+
iPhone 7 (GSM)
iPhone 7 (Global)
iPhone 7 Plus (GSM)
iPhone 7 Plus (Global)
iPhone SE
iPod touch 6


wtf is this

(02-03-2016, 11:37 PM)0-Day Wrote: This topic will show you how to quickly and easily protect your apache server.

disable dangerous functions:


Enable open_basedir:

Find ;open_basedir = or open_basedir = and change your time with directory on your site

Example:
open_basedir = "/var/www/html/"

you broke the site. lol https://gyazo.com/f47787d19e5ea18de46eb2b4da3be44d
Designer / Front End Dev.

[Image: tumblr_n3rp4ou8M31sat2doo1_500.gif]
Newbie
Posts:
17
Joined:
Feb 2017
Likes:
0
Credits:
50
Reputation:
0
1/2 Year of Service
#4
Posted: 06-02-2017, 11:56 PM
mod_security + Fail2Ban + mod_evasive works almost for all web security
Newbie
Posts:
16
Joined:
Mar 2017
Likes:
0
Credits:
2
Reputation:
0
1/2 Year of Service
#5
Posted: 04-03-2017, 09:23 AM
Yep fail2ban is required if you are installing a server
Newbie
Posts:
16
Joined:
Jun 2017
Likes:
0
Credits:
17
Reputation:
0
1/2 Year of Service
#6
Posted: 20-06-2017, 10:43 AM
How i do this for my web site
The last reply on this thread is older than a month. Please do not unnecessarily bump it.
Register an account or login to reply
Create an account
Create a free account today and start posting right away. It only takes a few seconds.
Login
Log into an existing account.
1 Guest(s)