Manual Suse openSUSE 12.2 (page 415 of 530) (English)

488889

415

Zoom out

Zoom in

1/530

20.7 Avoiding Security Problems

A Web server exposed to the public Internet requires an ongoing administrative effort.

It is inevitable that security issues appear, both related to the software and to accidental

misconguration. Here are some tips for how to deal with them.

20.7.1 Up-to-Date Software

If there are vulnerabilities found in the Apache software, a security advisory will be

issued by SUSE. It contains instructions for xing the vulnerabilities, which in turn

should be applied as soon as possible. The SUSE security announcements are available

from the following locations:

•

Web Page http://www.novell.com/linux/security/

securitysupport.html

•

Mailing List Archive http://lists.opensuse.org/opensuse

-security-announce/

•

RSS Feed http://www.novell.com/linux/security/suse_security

.xml

20.7.2 DocumentRoot Permissions

By default in openSUSE, the DocumentRoot directory /srv/www/htdocs and

the CGI directory /srv/www/cgi-bin belong to the user and group root. You

should not change these permissions. If the directories are writable for all, any user can

place les into them. These les might then be executed by Apache with the permissions

of wwwrun, which may give the user unintended access to le system resources. Use

subdirectories of /srv/www to place the DocumentRoot and CGI directories for

your virtual hosts and make sure that directories and les belong to user and group

root.

The Apache HTTP Server 397

Report abuse

Libble takes abuse of its services very seriously. We're committed to dealing with such abuse according to the laws in your country of residence. When you submit a report, we'll investigate it and take the appropriate action. We'll get back to you only if we require additional details or have more information to share.

Product:

Forumrules

To achieve meaningful questions, we apply the following rules:

First, read the manual;
Check if your question has been asked previously;
Try to ask your question as clearly as possible;
Did you already try to solve the problem? Please mention this;
Is your problem solved by a visitor then let him/her know in this forum;
To give a response to a question or answer, do not use this form but click on the button 'reply to this question';
Your question will be posted here and emailed to our subscribers. Therefore, avoid filling in personal details.

new questions and answers
new manuals

You will receive an email to register for one or both of the options.

Get your user manual by e-mail

Enter your email address to receive the manual of Suse openSUSE 12.2 in the language / languages: English as an attachment in your email.

The manual is 8,65 mb in size.

You will receive the manual in your email within minutes. If you have not received an email, then probably have entered the wrong email address or your mailbox is too full. In addition, it may be that your ISP may have a maximum size for emails to receive.

Others manual(s) of Suse openSUSE 12.2

Suse openSUSE 12.2 Quick start guide - English - 284 pages

The manual is sent by email. Check your email

If you have not received an email with the manual within fifteen minutes, it may be that you have a entered a wrong email address or that your ISP has set a maximum size to receive email that is smaller than the size of the manual.

The email address you have provided is not correct.

Please check the email address and correct it.

Your question is posted on this page

Would you like to receive an email when new answers and questions are posted? Please enter your email address.

Info

Suse openSUSE 12.2 Manual

Product: