www.bonsaiframework.com
Page tree

Versions Compared

Old Version 43

changes.mady.by.user Marc Arakill

Saved on

compared with

New Version 44

changes.mady.by.user Marc Arakill

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

Expand
titleClick here to see a description of each module

Here

ModuleMin. Apache V2 VersionIncludedWhat does it do?Reasons to include/exclude
DefaultMostReallyallFew
















mod_access_compat2.4
No
Yes

Status
colourGreen
titleYES

Control access based on client hostname, IP address or other characteristics of client request
mod_actions2.0No


Lets you run CGI scripts when a particular file or method is used in a requestExclude if not using CGI scripts or have no need to execute scripts conditionally based on
request
requests. XSS vulnerability considerations. If included, ensure request parameters are not considered when making decisions based on content type
mod_alias2.0



Used for simple URL manipulation tasks, including mapping URLs to filesystem paths and standard redirection.
mod_allowmethods2.4



Restricts what HTTP methods can be used on a server
mod_asis2.0



Allows you to send a document without adding the usual HTTP headers
mod_auth_basic2.2



Used to restrict access with HTTP Basic Auth. Should be combined with at least one authentication module and one authorization module.If this type of authentication is required, it is nearly imperative to use SSL as passwords are sent as almost plain text (base4 encoded).
mod_auth_digest2.0



Used to implement HTTP Digest Auth.If this type of authentication is required, it is nearly imperative to use SSL as an attacker can force the browser to downgrade to
basci
basic auth. The passwords are stored unsecurely on the server.
mod_auth_form2.4



Allows the use of an HTML login form to restrict accessDepends on mod_session modules and makes use of HTTP cookies, which is susceptible to XSS attacks.
mod_authn_anon2.2



Authentication - Provides anonymous user access to authenticated areas
mod_authn_core2.4



Authentication - Provides core authentication capabilities
mod_authn_dbd2.2



Authentication - Provides authentication against SQL tables
mod_authn_dbm2.2



Authentication - Provides authentication against dbm password files
mod_authn_file2.2



Authentication - Provides authentication against plain text password files
mod_authn_socache2.4



Authentication - Maintains a cache of authentication credentials
mod_authnz_fcgi2.4



Authorization - FastCGI authorizer application
mod_authnz_ldap2.2



Authorization - Provides authorization through an LDAP directory
mod_authz_core2.4



Authorization - Provides core authorization capabilities
mod_authz_dbd2.4



Authorization - Provides group authorization based on SQL database
mod_authz_dbm2.2



Authorization - Provides group authorization based on dbm files
mod_authz_groupfile2.2



Authorization - Provides authorization against plain text files
mod_authz_host2.4



Authorization - Provides authorization based host (name or IP)
mod_authz_owner2.2



Authorization - Provides authorization based on file ownership
mod_authz_user2.2



Authorization - Provides authorization based on authenticated user
mod_autoindex2.0



Generates directory indexes