! " # $ # conf ! httpd.conf $ /etc/httpd % # $ $ ! Antes de nada, asegúrate de tener instalados los últimos parches de seguridad instalados & ' ( $ & $ ) ) ) " # chown -R root:root /usr/local/apache # chmod -R o-rwx /usr/local/apache & * # '" +,-+-!" Order Deny,Allow Deny from all Allow from 176.16.0.0/16 *" Order Deny,Allow Deny from all Allow from 127.0.0.1 * ! " . % # $ / # $ $ 0 # $" ServerSignature Off 1 ServerSignature ' # 22 ! ServerTokens Prod 3 ServerTokens 044 # ! # 5 & $ $" 6 # 7" & : 6 ! # & " 8 9 8##9 1. & 7 " & 8## # " 1 .$ " 6 " 3 ; & & # < $ ' < # !3 7 ; ($ 7 ' 1 # !& $ + 8 & 1. 8## ; % $ = $ # > "> # & 1 22 % & 4? $ # ! %& 5 $ ! $" 6 # & 7" & : # 6 044 & 4? " & 7 " 1 " .$ . '9 . 4? 9 . @ A9 @ 8 A9 8&9 B B # 6 " 1 & $ # & 4? @ 8 1 & 4? 4? 4? . @ 1 & 4? 4? ' !" & " ' !" & " ) ' !" & " ) ' !" & " ) 2+ ' !" & " ) 2+ C 7! " ) 2+ C 7! 0 )2 A 8& 1 & A . 1 & B # ! 1 ' 1 # $ . ' 1 & $ !" & )+ $ 1 22 # . . & & # $ ' / D D " User apache Group apache ' 1 < & $ * 8E 1 < • • • • • • • • • B B : : $ $ $ $ " 7 # # $ $ $ C C 3 =C33F 3 1 G $ " # $ 5 / $ % ( ' F # H " $ $ ! $ LoadModule / $ grep LoadModule httpd.conf 1 $ # " ! = & ( " <Directory /> Order Deny,Allow Deny from all Options None I )I # $ $ AllowOverride None </Directory> <Directory /web> Order Allow,Deny Allow from all </Directory> 4 Options None J K J ; 7 $ AllowOverride None K Option ! Override ( 1 " L5 M/ L5 M/ 7 Options -Indexes $ ! ! 1 Options -Includes $ ! )* & ' $ 6N* % 1 / none ExecCGI Options -ExecCGI " 5 4 " # L5 none FollowSymLinks Options -FollowSymLinks $ ! & " Options None & " Options -ExecCGI -FollowSymLinks -Indexes M $ ! ! + 1 AllowOverride Directory 6 none AllowOverride None 8 $ ' !& # " AccessFileName .httpdoverride <Files ~ “^\.ht”> Order allow,deny Deny from all Satisfy All </Files> $ " ! ",(" # ' " O $ ! " Timeout 45 -" " . ",(" ; $ ' % C # ( # ' #' #' +. F LimitRequestBody & " LimitRequestBody 1048576 G #' ; ; "LimitRequestFields LimitRequestFieldSize -" & " . LimitRequestLine /0 - ' $ mod_dav ; 7 LimitXMLRequestBody $ P +. F! & % LimitXMLRequestBody 10485760 1 ' $ ! 3 + ; $ ' # ' # ; 7 $ + . F" -" 1 ' # 1 # $ ' Q MaxClients 7 ' 8 ' MaxSpareServers MaxRequestsPerChild ServerLimit MaxSpareThreads = / 7 ' ThreadsPerChild Q ' $ "R& 2 & % ! $ S ' TU # $ 1 # ' MaxKeepAliveRequests # 15! 6 KeepAliveTimeout 100 3 chroot ' # # 1 8 F&5 % # # 1 $ # mod_security & mod_security ; # $" SecChrootDir /chroot/apache 1 # / $ # &