Apache_Hardening_Centos

1. #!/bin/bash
2.  
3. PathPHP="/etc/php.d/security.ini"
4.  
5.  
6. # PHP
7.  
8. echo  "expose_php = off" >> ${PathPHP}
9. echo  "expose_php = off" >> ${PathPHP}
10. echo  "expose_php = off" >> ${PathPHP}
11. echo  "expose_php = off" >> ${PathPHP}
12. echo  "expose_php = off" >> ${PathPHP}
13. echo  "expose_php = off" >> ${PathPHP}
14. echo  "expose_php = off" >> ${PathPHP}
15. echo  "expose_php = off" >> ${PathPHP}
16. echo  "expose_php = off" >> ${PathPHP}
17.  
18. # HTTPD
19. PathHTTPd="/etc/httpd/cond.d/security.conf"
20. echo "ServerSignature Off" >>${PathHTTPd}
21. echo "ServerTokens Prod" >>${PathHTTPd}
22. echo "TraceEnable off" >>${PathHTTPd}
23. echo "FileETag None" >>${PathHTTPd}
24. echo "Header set X-Frame-Options SAMEORIGIN" >>${PathHTTPd}
25. echo "Header set X-XSS-Protection 1;mode=block" >>${PathHTTPd}
26. echo "Header set X-Content-Type-Options nosniff" >>${PathHTTPd}
27. #echo "X-Permitted-Cross-Domain-Policies: none" >>${PathHTTPd}
28. #echo "Referrer-Policy: no-referrer" >>${PathHTTPd}
29. echo "" >>${PathHTTPd}
30. echo "" >>${PathHTTPd}