As a security best practice, ensure that a user cannot bowse through a directory because it can increase the risk of exposure to directory traversal attacks.

Verify that web directory browsing is disabled for all directories.


Open the /etc/apache2/default-server.conf and /usr/lib/vmware-vcopssuite/utilities/conf/vcops-apache.conf files in a text editor.


Verify that for each <Directory> listing, the option called Indexes for the relevant tag is omitted from the Options line.