3.4 Ensure Apache Directories and Files Are Owned By Root

Information

The Apache directories and files should be owned by root. This applies to all of the Apache software directories and files installed.

Rationale:

Restricting ownership of the Apache files and directories will reduce the probability of unauthorized modifications.

Solution

Perform the following:

Set ownership on the '$APACHE_PREFIX' directories such as '/usr/local/apache2':

$ chown -R root $APACHE_PREFIX

See Also

https://workbench.cisecurity.org/files/2378