There a way to secure Apache 2.0 for LAN-use only?

[Kaido]

I'm running Apache 2.0 on an XP Home box on a LAN with WAN access. I only want Apache to be used on the LAN for now. Is there some kind of config file that I can modify to allow this?

 

[nweaver]

httpd.conf

allow only access from your private network address (it's in there, scroll down).


Unless you replaced the httpd.conf (may be apache.conf, depending on versions, etc) it's well commented.

 

[Kaido]

Originally posted by: nweaver
httpd.conf

allow only access from your private network address (it's in there, scroll down).


Unless you replaced the httpd.conf (may be apache.conf, depending on versions, etc) it's well commented.

I'm using XAMPP as a testbed, so placement is a bit screwy. I'll find it, thank you!

 

[blurredvision]

I am very limited in knowledge, but it was always my understanding that Apache was configured, at default, to only be accessible on the network. You only had to fool with the conf file to open it up to the net.

 

[Crusty]

Originally posted by: blurredvision
I am very limited in knowledge, but it was always my understanding that Apache was configured, at default, to only be accessible on the network. You only had to fool with the conf file to open it up to the net.

Not sure on 2.0, but the default install of 1.3 in debian opens it up to everyone, unless you have a firewall. In that case you also have to open the port on the firewall.

 

[n0cmonkey]

Originally posted by: MCrusty

Originally posted by: blurredvision
I am very limited in knowledge, but it was always my understanding that Apache was configured, at default, to only be accessible on the network. You only had to fool with the conf file to open it up to the net.

Not sure on 2.0, but the default install of 1.3 in debian opens it up to everyone, unless you have a firewall. In that case you also have to open the port on the firewall.

Apache 2 is configured to accept all connections by default.