As a security best practice, ensure that a user cannot bowse through a directory because it can increase the risk of exposure to directory traversal attacks.

Procedure

Verify that web directory browsing is disabled for all directories.
  1. Open the /etc/apache2/default-server.conf and /usr/lib/vmware-vcopssuite/utilities/conf/vcops-apache.conf files in a text editor.
  2. Verify that for each <Directory> listing, the option called Indexes for the relevant tag is omitted from the Options line.