Red Hat Bugzilla – Bug 439544
Remove mod_autoindex.so . . .
Last modified: 2015-01-04 18:31:25 EST
+++ This bug was initially created as a clone of Bug #418701 +++
Per CVE-2007-4465 as documented in bugzilla bug #289511, the mod_autoindex.so
contains a potential security vulnerability.
Since the "mod_autoindex.so" Apache module should not be needed by either the
TPS or the RA, the line referencing "mod_autoindex.so" in both subsystems
httpd.conf files should be removed.
-- Additional comment from email@example.com on 2008-01-10 14:49 EST --
Note that this module is Required for the command 'IndexOptions' in the Apache