fe32fc
#
fe32fc
# Cacti: An rrd based graphing tool
fe32fc
#
fe32fc
fe32fc
# For security reasons, the Cacti web interface is accessible only to
fe32fc
# localhost in the default configuration. If you want to allow other clients
fe32fc
# to access your Cacti installation, change the httpd ACLs below.
fe32fc
# For example:
fe32fc
# On httpd 2.4, change "Require host localhost" to "Require all granted".
fe32fc
# On httpd 2.2, change "Allow from localhost" to "Allow from all".
fe32fc
fe32fc
Alias /cacti    /usr/share/cacti
fe32fc
fe32fc
<directory usr="" share="" cacti=""/>
fe32fc
	<ifmodule mod_authz_core.c="">
fe32fc
		# httpd 2.4
fe32fc
		Require host localhost
fe32fc
	</ifmodule>
fe32fc
	<ifmodule !mod_authz_core.c="">
fe32fc
		# httpd 2.2
fe32fc
		Order deny,allow
fe32fc
		Deny from all
fe32fc
		Allow from localhost
fe32fc
	</ifmodule>
fe32fc
</directory>
fe32fc
fe32fc
<directory usr="" share="" cacti="" install="">
fe32fc
	# mod_security overrides.
fe32fc
	# Uncomment these if you use mod_security.
fe32fc
	# allow POST of application/x-www-form-urlencoded during install
fe32fc
	#SecRuleRemoveById 960010
fe32fc
	# permit the specification of the rrdtool paths during install
fe32fc
	#SecRuleRemoveById 900011
fe32fc
</directory>
fe32fc
fe32fc
fe32fc
# These sections marked "Require all denied" (or "Deny from all")
fe32fc
# should not be modified.
fe32fc
# These are in place in order to harden Cacti.
fe32fc
<directory usr="" share="" cacti="" log="">
fe32fc
	<ifmodule mod_authz_core.c="">
fe32fc
		Require all denied
fe32fc
	</ifmodule>
fe32fc
	<ifmodule !mod_authz_core.c="">
fe32fc
		Order deny,allow
fe32fc
		Deny from all
fe32fc
	</ifmodule>
fe32fc
</directory>
fe32fc
<directory usr="" share="" cacti="" rra="">
fe32fc
	<ifmodule mod_authz_core.c="">
fe32fc
		Require all denied
fe32fc
	</ifmodule>
fe32fc
	<ifmodule !mod_authz_core.c="">
fe32fc
		Order deny,allow
fe32fc
		Deny from all
fe32fc
	</ifmodule>
fe32fc
</directory>