Environment: Kali built apache2
recurrent:
Default configuration, the file will be added to the apache project path
/ Was / www
At this time apache2.conf default configuration is as follows:
<Directory /var/www/> Options Indexes FollowSymLinks AllowOverride None Require all granted </Directory>
Access path kali store files, identify vulnerabilities:
repair:
Modify apache2.conf, prohibit directory traversal:
<Directory /var/www/> Options -Indexes FollowSymLinks AllowOverride None Require all granted </Directory>
Restart apache2, and re-access, then access to the file can not be found in the list:
reference:
https://www.cnblogs.com/wlfsky/p/10570078.html
https://www.fujieace.com/penetration-test/directory-traversal-2.html
Summary :
1, phpstudy modify apache httpd.conf in the corresponding parameter modification options invalid, presumably phpstudy on the web system security reinforcement done.
2, this case corresponds apache2.conf httpd.conf configuration file in the apache