Re: [users@httpd] Re: Apache Vulnerability

2013-11-08 Thread John Hudak
Thanks for the tip..now, would you be so kinds as to give a hint at what it does??? Thanks J On Fri, Nov 8, 2013 at 8:58 PM, Good Guy wrote: > Just put this code at the end of your conf file: > > *ServerSignature Off* *ServerTokens Prod* > ServerSignature Off > ServerTokens Prod > > *ServerSi

[users@httpd] Re: Apache Vulnerability

2013-11-08 Thread Good Guy
Just put this code at the end of your conf file: *ServerSignature Off* *ServerTokens Prod* ServerSignature Off ServerTokens Prod *ServerSignature Off* *ServerTokens Prod* *ServerSignature Off* *ServerTokens Prod* On 08/11/2013 08:08, pratibha.dhank...@wipro.com wrote: Hi, We have received o

Re: [users@httpd] Installed Modules Query

2013-11-08 Thread Jeff Trawick
On Fri, Nov 8, 2013 at 3:51 AM, Frank Roche wrote: > Hi - I am a newbie to Apache and want to learn how to setup Apache as a > reverse proxy server for Oracle e-Business Suite. > > I am following an Oracle document which details how to do this but the > Apache version it uses is in the example is

[users@httpd] macs not redirecting

2013-11-08 Thread paul carson
> >We are finding mac users are having http://local/... Appended to the >front of redirects. So a redirect to http://spareserver/ ends up with http://localhost/spareserver > Does anyone know if this is a known mac behaviour? Regard paul

Re: [users@httpd] Apache Vulnerability

2013-11-08 Thread Antonio Vidal Ferrer
HI! I recommend you to follow the corresponding CIS benchmarck guide,  in order to secure your HTTPD servers: http://benchmarks.cisecurity.org/downloads/show-single/?file=apache24.100 (this link is related to Apache HTTP server 2.4. there you'

RE: [users@httpd] Apache Vulnerability

2013-11-08 Thread pratibha.dhankhar
Hi Vidyadhar, This is the detailed report they have have provided us :- [cid:image001.png@01CEDC9C.CC26D930] -- Regards Pratibha From: Vidyadhar [mailto:techienote@gmail.com] Sent: Friday, November 08, 2013 3:48 PM To: users Subject: Re: [users@httpd] Apache Vulnerability Hi Pratibha,

Re: [users@httpd] Apache Vulnerability

2013-11-08 Thread Vidyadhar
Hi Pratibha, On 8 Nov 2013 13:39, wrote: > > Hi, > > > > > > We have received one apache vulnerability from our security auditors “The remote web server is load-balanced.” The solution to which is provided as “Update the web configuration to hide information disclosure.” .Can you please explain w

Re: [users@httpd] Installed Modules Query

2013-11-08 Thread Pete Houston
Hello Frank, Apache is very flexible and allows the installer (ie. you) to choose which modules to compile statically into the httpd binary, which to compile as loadable, external DSOs and which not to compile at all. The very small list of compiled-in modules which you see are the bare bones for

Re: [users@httpd] Installed Modules Query

2013-11-08 Thread Aurélien Terrestris
Frank, httpd -l shows compiled-in modules but it's better to use DSO modules rather than compiled-in. To see what DSO modules were compiled, you can check what's in your modules directory. To get a great Apache 2.4.X with DSO, you can compile like this : 'configure --prefix=yourinstalldir --enabl

[users@httpd] Installed Modules Query

2013-11-08 Thread Frank Roche
Hi - I am a newbie to Apache and want to learn how to setup Apache as a reverse proxy server for Oracle e-Business Suite. I am following an Oracle document which details how to do this but the Apache version it uses is in the example is httpd-2.0.54.tar.gz I would like to use the latest version o

[users@httpd] Apache Vulnerability

2013-11-08 Thread pratibha.dhankhar
Hi, We have received one apache vulnerability from our security auditors "The remote web server is load-balanced." The solution to which is provided as "Update the web configuration to hide information disclosure." .Can you please explain what configuration needs to be done in order to rectify