Configuration files should be secured against unauthorized access.
Information
The owner of the web server process should not have write permission to the server configuration file.
Solution
1. The HTTP server configuration file is located at <IBM Http Installation directory>/conf 2. Ensure that only the administrators and no unauthorized users have permissions on the conf directory.