The server-status page is necessary for the Apache munin plugin, but by default it is not secure when run behind a squid proxy.
The server-status page is necessary for the Apache munin plugin, but by default it is not secure when run behind a squid proxy.
Yesterday, there was a thread on hacker news highlighting that many sites around the world were making available potentially sensitive information about their site via Apache’s server-status link (provided by mod-status). The stated advice is to limit access to this and similar pages (such as the server info page provided by mod-info) by using Allow/Deny […]
Yesterday, there was a thread on hacker news highlighting that many sites around the world were making available potentially sensitive information about their site via Apache’s server-status link (provided by mod-status). The stated advice is to limit access to this and similar pages (such as the server info page provided by mod-info) by using Allow/Deny […]
I asked this question over on Hacker News, as well as Quora, but I thought I’d also ask it here… The UK plans to intercept all electronic communication. They currently don’t plan to snoop on content, but as noted elsewhere connection data is just as invasive. To me this is both a civil liberties and […]
I asked this question over on Hacker News, as well as Quora, but I thought I’d also ask it here… The UK plans to intercept all electronic communication. They currently don’t plan to snoop on content, but as noted elsewhere connection data is just as invasive. To me this is both a civil liberties and […]
Time, Space, and Plexiglas
