System information
Adobe documentation - Confidential
# fgrep LoadModule /etc/httpd/conf/httpd.conf
Some modules that you may be able to remove (or comment out by placing a # at the beginning of the
line) include: mod_imap, mod_info, mod_userdir, mod_status, mod_cgi, mod_autoindex
.
Add apache user to webusers group
The Apache web server runs as user apache by default (consider changing this username to a non
default username) on Red Hat Enterprise Linux. Add the apache user to the webusers group we created
in section 3.2:
# usermod -a -G webusers apache
See the Appendix for more information on securing the Apache Web Server installation.
Setup directories for web roots
Create a directory on the server to house the web root for your websites, in this guide we will use /www
please choose a unique directory name.
# mkdir /www
Create a directory for the default web site.
# mkdir /www/default
# mkdir /www/default/wwwroot
Create a index.html file in the default site:
# echo 'Hello' > /www/default/wwwroot/index.html
Create a directory for the ColdFusion administrator site:
# mkdir /www/administrator
# mkdir /www/administrator/wwwroot
Specify permissions on web root directories
# chown -R cfuser:webusers /www
# chmod -R 550 /www
The permission 550 specifies that the owner (cfuser) has r-x permission, the group (webusers) has r-x
permission, and all other users have no permission to this directory. With this setup ColdFusion will not
be able to create, edit or delete any files under the web root by default. If your site example.com needs
to write files to /www/example.com/uploads/ then you must give the cfuser permission to write to that
directory, for example:
# chmod -R 750 /www/example.com/uploads/
Adobe documentation - Confidential