Vault 7: Projects

This publication series is about specific projects related to the Vault 7 main publication.

SECRET//ORCON//NOFORN
13.3 Installation on Apache
The Beacon Server component must be installed into a web server on the LP
machine. This section will describe the process for installing the Beacon Server on a
machine that uses the Apache v2.2 web server.
The Gibson .Conf File
First, create a .conf file that defines the basic settings required to operate the
Beacon Server using Apache. This file will be referenced by each virtual host added
to the web server.
/etc/apache2/the-gibson.conf
DocumentRoot /var/www/beacon
<Directory /var/www/beacon>
Options Indexes FollowSymLinks MultiViews +ExecCGI
AddHandler cgi-script .cgi
AllowOverride None
Order allow,deny
allow from all
</Directory>
<IfModule rewrite_module>
RewriteEngine on
RewriteRule .* /beacon_server_redirect.cgi
</IfModule>
SetEnvIf X-Forwarded-For "^(.*)" X_FORWARDED_FOR=$1
ErrorLog ${APACHE_LOG_DIR}/beacon-error.log
Target Virtual Host
Second, create an Apache virtual host for one or more Assassin LP identities. The
Apache virtual host specifies the name of the server and the site's SSL certificate.
/etc/apache2/sites-available/beacon
<VirtualHost *:443>
ServerAdmin webmaster@beacon.net
ServerName beacon.net
Include /etc/apache2/the-gibson.conf
SSLEngine on
SSLCertificateFile /etc/ssl/certs/ssl-cert-snakeoil.pem
SSLCertificateKeyFile /etc/ssl/private/ssl-cert-snakeoil.key
118
SECRET//ORCON//NOFORN

e-Highlighter

Click to send permalink to address bar, or right-click to copy permalink.

Un-highlight all Un-highlight selectionu Highlight selectionh