Apache HTTP Server Version 2.0
Description: | Provides a comprehensive overview of the server configuration |
---|---|
Status: | Extension |
Module Identifier: | info_module |
Source File: | mod_info.c |
To configure mod_info
, add the following to your httpd.conf
file.
<Location /server-info>
SetHandler server-info
</Location>
You may wish to use mod_access
inside the <Location>
directive to limit access to your server configuration information:
<Location /server-info>
SetHandler server-info
Order deny,allow
Deny from all
Allow from yourcompany.com
</Location>
Once configured, the server information is obtained by accessing http://your.host.dom/server-info
User
directive), or else the directive settings will not be listed.
It should also be noted that if mod_info
is compiled into the server, its handler capability is available in all configuration files, including per-directory files (e.g., .htaccess
). This may have security-related ramifications for your site.
In particular, this module can leak sensitive information from the configuration directives of other Apache modules such as system paths, usernames/passwords, database names, etc. Due to the way this module works there is no way to block information from it. Therefore, this module should only be used in a controlled environment and always with caution.
Description: | Adds additional information to the module information displayed by the server-info handler |
---|---|
Syntax: | AddModuleInfo module-name string |
Context: | server config, virtual host |
Status: | Extension |
Module: | mod_info |
Compatibility: | Apache 1.3 and above |
This allows the content of string to be shown as HTML interpreted, Additional Information for the module module-name. Example:
AddModuleInfo mod_auth.c 'See <a \
href="http://www.apache.org/docs-2.0/mod/mod_auth.html">\
http://www.apache.org/docs-2.0/mod/mod_auth.html</a>'