Securing-Optimizing-RH-Linux-1_2_368
Comments and suggestions concerning this book should be mailed to gmourani@videotron.ca
© Copyright 1999-2000 Gerhard Mourani and Open Network Architecture ®
368
--localstatedir=/var \
--runtimedir=/var/run \
--logfiledir=/var/log/httpd \
--datadir=/home/httpd \
--proxycachedir=/var/cache/httpd \
--mandir=/usr/man \
--add-module=src/modules/experimental/mod_mmap_static.c \ (require only if you have the intention to use
mod_mmap, see the section Optimizing Apache in this chapter for more information).
--add-module=src/modules/standard/mod_auth_dbm.c \ (require only if you have the intention to use
mod_auth_dbm, see the section Securing Apache in this chapter for more information).
--enable-module=ssl \ (require only if you have included support for mod_ssl data encryption to your Apache
source).
--enable-rule=SSL_SDBM \ (require only if you have included support for mod_ssl data encryption to your
Apache source).
--disable-rule=SSL_COMPAT \ (require only if you have included support for mod_ssl data encryption to your
Apache source).
--activate-module=src/modules/php4/libphp4.a \ (require only if you have included support for PHP4 server-
side scripting language to your Apache source).
--enable-module=php4 \ (require only if you have included support for PHP4 server-side scripting language to
your Apache source).
--activate-module=src/modules/perl/libperl.a \ (require only if you have included support for mod_perl
programming language to your Apache source).
--enable-module=perl \ (require only if you have included support for mod_perl programming language to
your Apache source).
--disable-module=status \
--disable-module=userdir \
--disable-module=negotiation \
--disable-module=autoindex \
--disable-module=asis \
--disable-module=imap \
--disable-module=env \
--disable-module=actions
This tells Apache to set itself up for this particular hardware setup with:
- module mod_mmap to improve performance.
- module mod_auth for users password authentication security.
- module mod_ssl for data encryptions and secure communication.
- module mod_php4 for php server-side scripting language and improve the load of web pages
build in php.
- module mod_perl for better security and performance than the default cgi scripts.
- disable module status
- disable module userdir
- disable module negotiation
- disable module autoindex
- disable module asis
- disable module imap
- disable module env
- disable module actions
NOTE: Its important to note that removing all unrequited modules during the configure time will
improve the performance of your Apache Web Server. In our configuration time above, we
remove the most unused modules for high load operation and limit the security risk of our Apache
web server. See your Apache documentation for information of each ones.
Step 7
Now, we must install Apache in the Linux server:
[root@deep apache_1.3.12]# make