Home > IT Answers > AS/400 > PCI scan indicates finding default Apache dir...
STravis
5 pts.
Q:
PCI scan indicates finding default Apache directories on IBM System I5
IBM AS/400, Apache Web Server
Scan indicates find default  Apache directories such as /_borders/ /_overlay/ /_themes/ /banners/ ...

Does anyone know where these Apache directories exist and/or how to stop access on IBM System I5.  This is a low threat item but is only thing keeping me from 100% clean scan?



Software/Hardware used:
IBM System I5 v5r4m0 with Apache server
ASKED: Nov 13 2009  7:49 PM GMT
_ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _
RELATED QUESTIONS
Whatis23
5090 pts.
A:
 RATE THIS ANSWER
0
Click to Vote:
  •   0
  •  0
  • Bookmark and Share
Check in the "/www/apachedft" directory of the IFS.

Select option 9 to Work with authority to *EXCLUDE to limit access.
Last Answered: Nov 13 2009  10:19 PM GMT by Whatis23   5090 pts.
  •   
RSS - Discussions Help
Discuss This Answer:
_ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _



_ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _

KevinBeaver   8705 pts.  |   Nov 20 2009  2:10PM GMT

Is this holding you back? Some things you just can’t resolve and if it’s not creating a risk it might not make sense to fix it.

BTW, be careful relying on PCI scans alone - just because they turn up clean doesn’t mean you don’t have some serious issues that can only be uncovered with good Web vulnerability scanners and manual analysis.