#
# Disable access to the entire file system except for the directories that
# are explicitly allowed later.
#
# This currently breaks the configurations that come with some web application
# Debian packages.
#
#<Directory />
# AllowOverride None
# Require all denied
#</Directory>
# Changing the following options will not really affect the security of the
# server, but might make attacks slightly more difficult in some cases.
#
# ServerTokens
# This directive configures what you return as the Server HTTP response
# Header. The default is 'Full' which sends information about the OS-Type
# and compiled in modules.
# Set to one of: Full | OS | Minimal | Minor | Major | Prod
# where Full conveys the most information, and Prod the least.
#ServerTokens Minimal
ServerTokens Prod
#ServerTokens Full
#
# Optionally add a line containing the server version and virtual host
# name to server-generated pages (internal error documents, FTP directory
# listings, mod_status and mod_info output etc., but not CGI generated
# documents or custom error documents).
# Set to "EMail" to also include a mailto: link to the ServerAdmin.
# Set to one of: On | Off | EMail
#ServerSignature Off
ServerSignature Off
#
# Allow TRACE method
#
# Set to "extended" to also reflect the request body (only for testing and
# diagnostic purposes).
#
# Set to one of: On | Off | extended
TraceEnable Off
#TraceEnable On
#
# Forbid access to version control directories
#
# If you use version control systems in your document root, you should
# probably deny access to their directories. For example, for subversion:
#
<DirectoryMatch "/\.svn">
Require all denied
</DirectoryMatch>
#############################################
<DirectoryMatch "/\.git">
Require all denied
</DirectoryMatch>
<Files ".ht*">
Require all denied
</Files>
<Files "xmlrpc.php">
Require all denied
</Files>
<Files "robots.txt">
Require all granted
</Files>
#################################################
#
# Setting this header will prevent MSIE from interpreting files as something
# else than declared by the content type in the HTTP headers.
# Requires mod_headers to be enabled.
#
Header set X-Content-Type-Options: "nosniff"
#
# Setting this header will prevent other sites from embedding pages from this
# site as frames. This defends against clickjacking attacks.
# Requires mod_headers to be enabled.
#
#Header set X-Frame-Options: "sameorigin"
# vim: syntax=apache ts=4 sw=4 sts=4 sr noet
Apache 2.4 Rewrite 404 errors log
Apache 2.4 Rewrite 404 errors log
- Create 1 conf file in apache :
$ nano /etc/apache2/conf-available/rewrite-log-404.conf
- Paste this code inside /etc/apache2/conf-available/rewrite-log-404.conf
RewriteEngine On
# exclude directory index
RewriteCond %{REQUEST_URI} !/index\.(php|html?)$
# exlcude auto-index of directories
RewriteCond %{REQUEST_URI} !/$
# if the request is not a file, directory, or symlink
RewriteCond %{REQUEST_FILENAME} !-f
RewriteCond %{REQUEST_FILENAME} !-d
RewriteCond %{REQUEST_FILENAME} !-l
# set the "notfound" environment variable
RewriteRule ^ - [E=notfound:true,L]
# LogFormat Vhost log
LogFormat "%v %h %l %u %t \"%r\" %>s %b \"%{Referer}i\" \"%{User-Agent}i\" %X" vhost_combined
CustomLog /var/log/apache2/error.log vhost_combined env=notfound
CustomLog /var/log/apache2/requests.log vhost_combined env=!notfound
- Activate conf with:
$ a2enconf rewrite-log-404
-------------------------------
by 🅴🆁🆁🅴🆄🆁32
Hosted on
🅴🅲🅷🔵🆂🆈🆂🆃🅴🅼
Désactiver le port 80 sur Windows 10
![windows10](https://blog.echosystem.fr/img/8c/windows10.jpg)
Désactiver le port 80 sur Windows 10
Par défaut le port 80 est utilisé dans Windows10 par le service "World Wide Web publishing Service"
Pour désactiver ce service:
- appuyez sur la touche windows du clavier et tapez simplement "Services"
- Rechercher dans la fenêtre "World Wide Web publishing Service"
- Mettre sur "Stop"
- ( Optionel) Désactivation permanente : Sélectionner "Manuel"
by 🅴🆁🆁🅴🆄🆁32
Hosted on
🅴🅲🅷🅾🆂🆈🆂🆃🅴🅼
- /!\ Backup Putty Windows all sessions.
- Création des clés SSH avec putty
- stop automatically sending fail2ban services email ... like a spam
- Ne pas copier coller n'importe quel texte de source inconnue