I’m running several FreePBX distro version 1.812.210.57-1 systems.
I noticed that on all of them Options Indexes was enabled in /etc/httpd/conf/httpd.conf
I am concerned that with that turned on, of course someone could browse the filesystem through apache remotely (yes yes I know that port 80 should be firewalled) but I did go ahead and remove the indexes line from the httpd.conf file in all of my systems.
My question is, 1 will I break anything by doing so, and 2 is there a reason this is enabled on the distro, or is this an oversight? I would think that part of the distro install should have this disabled but I figured I would bring it up to everyone’s attention and at least start a discussion about it.
Thanks for any input!
-Henry