Please whitelist cPanel in your adblocker so that you’re able to see our version release promotions, thanks!

The Community Forums

Interact with an entire community of cPanel & WHM users!

Removing Default "Index of" Setting on Apache

Discussion in 'Security' started by reefine, Sep 7, 2010.

  1. reefine

    reefine Registered

    Joined:
    Sep 7, 2010
    Messages:
    2
    Likes Received:
    0
    Trophy Points:
    51
    Hi,

    I am trying to get rid of the default setting that shows all files/folders "index of" default for a directory that has no index file.

    How do I do this?

    This should be default setup for cPanel installations... I am very surprised it is not! Huge security flaw!

    Thanks,
    Reefine
     
    #1 reefine, Sep 7, 2010
  2. cPanelDon

    cPanelDon cPanel Quality Assurance Analyst
    Staff Member

    Joined:
    Nov 5, 2008
    Messages:
    2,554
    Likes Received:
    9
    Trophy Points:
    168
    Location:
    Houston, Texas, U.S.A.
    cPanel Access Level:
    DataCenter Provider
    Twitter:
    Apache directory indexes can be disabled by default using WebHost Manager (WHM) via the following menu path (with linked documentation):
    WHM: Main >> Service Configuration >> Apache Configuration >> Global Configuration
    • Directory '/' Options >> Untick (uncheck) "Indexes" >> Save
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
    #2 cPanelDon, Sep 7, 2010
  3. reefine

    reefine Registered

    Joined:
    Sep 7, 2010
    Messages:
    2
    Likes Received:
    0
    Trophy Points:
    51
    Thanks. Worked!

    Why is this not default? This is a major security flaw. I feel sorry for users who do not know much about cPanel who are the administrators of their server..

    cPanel is excellent software but lacks:

    - Default configuration (for all files) optimized for security
    - Grammar checking (I noticed they spell "automatically" - "automagically" many times... very annoying)

    I have had to spend 12 hours optimizing cPanel to make it secure.. not very good with latest stable release :-/
     
    #3 reefine, Sep 7, 2010
  4. cPanelDon

    cPanelDon cPanel Quality Assurance Analyst
    Staff Member

    Joined:
    Nov 5, 2008
    Messages:
    2,554
    Likes Received:
    9
    Trophy Points:
    168
    Location:
    Houston, Texas, U.S.A.
    cPanel Access Level:
    DataCenter Provider
    Twitter:
    If there is a specific setting you would like enabled by default, such as one related to security, I would consider posting a feature request (one per thread) in the following forums area to help gather interest and spur discussion: Feature Requests for cPanel and WHM - cPanel Forums

    Regarding typos, if you see any that may have been missed please let us know; we greatly appreciate your feedback especially when reporting an issue. We have a dedicated link in the upper right corner of the forums, labeled Bugs, that can be used to Submit a Bug Report.

    Please note that while using the cPanel STABLE release tier there may be a longer wait until updates, including typo corrections, reach your system; this is because each update is first tested in other release tiers (AKA build trees), including EDGE, CURRENT, and RELEASE, before they may reach STABLE. Reference: cPanel/WHM Versions and Release Process
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
    #4 cPanelDon, Sep 7, 2010
  5. cPanelDavidG

    cPanelDavidG Technical Product Specialist

    Joined:
    Nov 29, 2006
    Messages:
    11,216
    Likes Received:
    10
    Trophy Points:
    313
    Location:
    Houston, TX
    cPanel Access Level:
    Root Administrator
    Automagically is a word (not a grammatical error). The most commonly accepted first use of the term in writing is considered to have taken place in 1987: Advanced structured analysis and design - Google Books
     
    #5 cPanelDavidG, Sep 16, 2010
(You must log in or sign up to post here.)
Loading...
Similar Threads - Removing Default Index
  1. MrL22

    Removing shared certificate

    MrL22, Jul 30, 2018, in forum: Security
    Replies:
    2
    Views:
    44
    cPanelLauren
    Jul 31, 2018
  2. millerroy

    Removing SSL redirects to another domain

    millerroy, May 15, 2018, in forum: Security
    Replies:
    3
    Views:
    212
    cPanelLauren
    May 16, 2018
  3. andrewmontesantos

    Removing Auto-Generated Subdomains

    andrewmontesantos, May 3, 2018, in forum: General Discussion
    Replies:
    5
    Views:
    206
    cPanelLauren
    May 4, 2018
  4. stephanw

    SOLVED Remove Account Without Removing DNS?

    stephanw, Apr 13, 2018, in forum: Bind/DNS/Nameserver
    Replies:
    6
    Views:
    256
    cPanelMichael
    Apr 16, 2018
  5. ibokahveci

    Removing Plugin From WebHost Manager Problem

    ibokahveci, Apr 12, 2018, in forum: General Discussion
    Replies:
    1
    Views:
    431
    cPanelLauren
    Apr 12, 2018

Share This Page

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Accept Learn More...
    Dismiss Notice