Web application security - the fast guide 1.1 | Page 79

Chapter 4 - Be the attacker
[root@meddle
apache_1.3.23]#
./configure
module=dirConfiguring for Apache, Version 1.3.23
P a g e | 79
--disable-
b. Use different root folders for user and administrator this might
protect your application from the effect of source-disclosure
attacks and directory traversal attacks against application
functionality:
/main/ maps to D:\IPub\pubroot\
/admin/ maps to E:\IPub\admroot\
You may also put the InetPub folder on diffe