If you keep the user_home_dir_t context applied to all of the users' home directories, that will make it simpler for other applications besides httpd to read the users' home directories. Here are some steps on how to achieve that: 1. This command will copy the /home directories SELinux context over to the /althome directory: # semanage fcontext -a -e /home /althome 2. Run restorecon on the /althome directory to apply the semanage-fcontext changes above: # httpd_sys_rw_content_t 3. … [Read more...] about How to Configure SELinux for home directories for Apache HTTPD
Apache
How to enable IPV6 in Apache
Question: How to use IPV6 in httpd? Does RHEL Apache httpd support the dual stack of IPv4 and IPv6 together? First, make sure IPv6 is enabled on your system. Follow the steps outlined below according to your OS version to enable ipv6. Enabling IPv6 support in CentOS/RHEL 7 1. Edit /etc/default/grub and delete the entry ipv6.disable=1 from the GRUB_CMDLINE_LINUX, like the following sample: GRUB_CMDLINE_LINUX="rd.lvm.lv=rhel/swap crashkernel=auto rd.lvm.lv=rhel/root" 2. Run the … [Read more...] about How to enable IPV6 in Apache
How to disallow or disable HTTP TRACE and TRACK requests in httpd (Apache)
My security team communicated that we are vulnerable to "Apache HTTP TRACE / TRACK Methods Allowed" issue, How to fix it? What is Apache TRACE and TRACK methods TRACE and TRACK are two HTTP methods used to debug web applications. These methods could be leveraged by malicious users to perform Cross-site Tracing attacks which are used to bypass authentication token protections. Disabling the TRACE and TRACK methods Add the line "TraceEnable off" if not already present to the httpd … [Read more...] about How to disallow or disable HTTP TRACE and TRACK requests in httpd (Apache)