See Also:
http://www.printlogger.com   Printer accounting software
http://www.sys-monitoring.com   System monitoring software
http://www.hs-lab.com   Software for Business and Home
http://win-printing.com   Windows Printing Software,
Articles and Press Release
     
Handy Software Lab's Software Products
     
HSLAB Force Down   HSLAB Print Logger Family
HSLAB Shutdown Folder   HSLAB Sys Monitor
HSLAB Logger   HSLAB Prefetch Manager
HSLAB HTTP Monitor Family   HSLAB WhoIs
HSLAB Security TrackerFamily    
     
     

HSLAB HTTP Monitor

ID #1114

How can I protect my status information from public access?

Even tough mod_status is not really revealing sensitive information you might want to restrict access. As usual there are several ways to restrict access to your Apache status information. The easiest way to do this is by granting access just to your IP address. Add following directive to your mod_status location block:
?
Allow from xxx.xxx.xxx.xxx

Where xxx.xxx.xxx.xxx is your local IP address. Please note if your Web Server is not hosted in your LAN and your are using a private

IP address like 10.x.x.x or 192.168.x.x you will need to find out your public IP address. Check www.dnsstuff.com to find your public address.

Your location block should look like this:

<Location /server-status>
SetHandler server-status
Order deny,allow
Deny from all
Allow from xxx.xxx.xxx.xxx
</Location>

Tags: -

Related entries:

Last update: 2008-10-01 00:26
Author: Oleg
Revision: 1.0

Digg it! Share on Facebook Print this record Send article to a friend Show this as PDF file
Please rate this article:

Average rating: 0 (0 Votes)

completely useless 1 2 3 4 5 most valuable

You cannot comment on this entry