Article ID: 130400, created on Mar 9, 2017, last review on Mar 9, 2017

  • Applies to:
  • Operations Automation 7.0

Symptoms

The icons/ directory of Apache HTTP server is indexed, causing various web server scanners report possible vulnerabilities.

Cause

The Apache HTTP server indexes this directory by default to make it possible to use its content (images) by various sites running on the server.

Resolution

OA does not use this ability, so you can simply turn off the indexing for the directory.

  1. Log in as root to the server where the brands reside.
  2. If the /etc/httpd/conf.d/autoindex.conf file exists (httpd 2.4.* and later), rename it:

    # mv /etc/httpd/conf.d/autoindex.conf /etc/httpd/conf.d/autoindex.conf.save
    

    if not, then open the /etc/httpd/conf/httpd.conf file, and comment the following line:

    Alias /icons/ "/usr/share/httpd/icons/"

    by adding the # symbol at the beginning of the line:

    #Alias /icons/ "/usr/share/httpd/icons/"

  3. Restart the Apache HTTP server:

    # service httpd restart
    

5356b422f65bdad1c3e9edca5d74a1ae caea8340e2d186a540518d08602aa065 e12cea1d47a3125d335d68e6d4e15e07 0871c0b47b3b86ae3b1af4c2942cd0ce 1941880841f714e458ae4dc3d9f3062d

Email subscription for changes to this article
Save as PDF