6
1
This is from file /etc/apache2/sites-enabled/000-default
right after installing apache2 from repositories.
DocumentRoot /var/www
<Directory />
Options FollowSymLinks
AllowOverride None
</Directory>
<Directory /var/www/>
Options Indexes FollowSymLinks MultiViews
AllowOverride None
Order allow,deny
allow from all
</Directory>
What does that first part set up? For me this looks that DocumentRoot should be / instead /var/www allowing that <Directory />
part to have any effect but I have to be wrong.
So in
<Directory /var/www/>
Options FollowSymlinks and AllowOverride None are redudant? And the reason why those options are set in<Directory />
is becouse there are symlinks enabled and it is possible to "break out" from /var/www folder? – Joni – 2010-09-29T19:00:06.033@joni. It depends how you look at it. Now you have 2 stanzas that are independent. you can change one, and know the other will still have the same perms as you thought. And yes, symlinks is one way you can 'break out', but there are others. Edited above some. – Rich Homolka – 2010-09-29T19:35:49.850