Solved

Stopping wget on Apache2 Ubuntu server

Posted on 2008-10-06
6
434 Views
Last Modified: 2013-11-15
I have a Ubuntu 8.04.1 server that serves PHP,MySQL and Java.
 It uses Apacee2, to protect the code I want to disallow WGET preferably globally
 without needing to enable .htaccess

 What command is required in what file in the /etc/apache2 directory to acheve this ?

 
0
Comment
Question by:itlearner1
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
6 Comments
 
LVL 4

Accepted Solution

by:
urgoll earned 250 total points
ID: 22655895
Hello,
I'm not sure why you want to disallow wget. wget is a command-line utility that simulates a web browser access, i.e. it cannot do anything a browser wouldn't be able to do.

wget should not be able to look at your PHP code; PHP is executed on the web server, and is used to generate your actual viewable content. If you can get at the PHP code using WGET or a web browser, PHP is not properly executing on your server and is a completely different question.

Hope this helps clear things up,
Christophe
0
 

Author Comment

by:itlearner1
ID: 22656292

 On the advice of a Wiley book. But the book describes only how to do it with .htaccess which is
 disabled on my machine because I understand it to be better to handle security globally through apache
 config files if possible. Unfortunately apache is done differently in Ubuntu then what is described in most
 articles on the net.
0
 
LVL 4

Expert Comment

by:urgoll
ID: 22656525
To be pedantic, .htaccess is also an Apache config file. Though it is true that it's marginally better to handle it centrally for two reasons:
- all the information is located in a single place; and
- if .htaccess is completely disabled, then apache will not waste time looking for it on every request, so you get a small performance gain.

That said, can you give me the reference to the Wiley book (title, author, ISBN, page number) ? I can look it up and get a feeling for what they are trying to achieve. As I said, if PHP is properly configured your web server should execute the PHP code, not serve it to the web client.

Regards,
Christophe
0

Featured Post

Industry Leaders: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

In my business, I use the LTS (Long Term Support) versions of Linux. My workstations do real work, and so I rarely have the patience to deal with silly problems caused by an upgraded kernel that had experimental software on it to begin with from a r…
It is possible to boost certain documents at query time in Solr. Query time boosting can be a powerful resource for finding the most relevant and "best" content. Of course the more information you index, the more fields you will be able to use for y…
How to Install VMware Tools in Red Hat Enterprise Linux 6.4 (RHEL 6.4) Step-by-Step Tutorial
Monitoring a network: why having a policy is the best policy? Michael Kulchisky, MCSE, MCSA, MCP, VTSP, VSP, CCSP outlines the enormous benefits of having a policy-based approach when monitoring medium and large networks. Software utilized in this v…

691 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question