jchris + apache   39

RewriteCond and RewriteRule tricks for .htaccess - LeaseWeb labs
With or without “www”? Not such a hard question considering that you can answer on both and redirect one. This snippet, which can be combined with the previous one, redirects all non-www requests to the www subdomain:
apache  https 
march 2018 by jchris
Apache OpenOffice Impress
Impress is a truly outstanding tool for creating effective multimedia presentations. Your presentations will stand out with 2D and 3D clip art, special effects, animation, and high-impact drawing tools. -==-Master Pages simplify the task of preparing your materials. Save even more time by downloading templates from our Templates repository.
presentation  software  opensource  apache 
december 2017 by jchris
Tricks to do client certificate authentications behind a reverse proxy
The problem we are tackling in this article is about X509 client certificate authentications. By definition and for security, a HTTPS request clear content cannot be spied. This is why when putting a reverse proxy behind the client and the internal web application, the HTTPS stream will be broken and we will loose all the client certificate data. -==- Here is some tips to forward without many efforts the client certificate data to the web application:
apache  certificate  proxy  ssl  sysadmin 
september 2017 by jchris
How To Tell Apache To Not Log Certain Requests In Its Access Log
This short guide shows how you use Apache's SetEnvIf directive to prevent Apache from logging such requests.
apache  webmaster 
august 2017 by jchris
Log Files - Apache HTTP Server
Although we have just shown that conditional logging is very powerful and flexibly, it is not the only way to control the contents of the logs. Log files are more useful when they contain a complete record of server activity. It is often easier to simply post-process the log files to remove requests that you do not want to consider.
apache  webmaster 
august 2017 by jchris
HowtoForge Linux Tutorials » Howto selbstsigniertes SSL Zertifikat erstellen
Wer kennt es nicht, man möchte gerne seinen Mailserver oder Webserver absichern mit SSL, weiss aber nicht wie er die SSL Zertifikate erstellen soll. Durch das benutzen von SSL wird die Kommunikation zwischen Client und Server verschlüsselt. Dadurch werden alle Daten, wie zum Beispiel Passwörter, Email Inhalte verschlüsselt übertragen. Der Vorteil von selbst signierten Zertifikaten gegenüber gekauften ist ganz einfach, sie kosten NICHTS! Um dies zu bewerkstelligen, benötigt man Openssl und in unserem Fall eine Linux Machine. In diesem Howto wird ein Debian Lenny 64Bit benutzt.
apache  pki  certificate  howto 
march 2014 by jchris
Apache Notes
I've administered a number of enterprise Apache servers over the years. The following are some of my notes, which fill in some gaps in the Apache documentation. Note that while most of this is applicable to any Apache server, file paths and other minor details may be Ubuntu/Debian specific.
apache  sysadmin  howto  security 
july 2013 by jchris
How to disable the support for SSLv2 LOW encryption ciphers? | Linux Windows System Administrator Help
There are known flaws in the SSLv2 protocol. A man-in-the-middle attacker can force the communication to a less secure level and then attempt to break the weak encryption. The attacker can also truncate encrypted messages.
apache  security  ssl  howto  sysadmin 
july 2013 by jchris
Van's Apache SSL/TLS mini-HOWTO
I recently had a need to setup a private directory on my web server that could only be accessed by a handful of selected people. The content also needed to be encrypted in transit. This mini-HOWTO details how I did this on a Red Hat 8.0/Apache 2.0.40 server using mod_ssl and OpenSSL (0.9.6b and higher). Here are the goals of this small project:
apache  apache2  howto  ssl  redhat 
november 2010 by jchris
Client Authentifizierung mit Apache
Apache ist der weltweit am häufigsten eingesetzte Web-Server, was Untersuchungen von Netcraft stets aufs neuste belegen. Ein Apache-Server stellt anfragenden Clients verschiedene Daten zur Verfügung, auf die auf unterschiedliche Art zugegriffen werden kann. Teilweise ist es wünschenswert, dass die Daten nur von dazu autorisierten Clients abgerufen werden können. Apache bietet hierzu zwei verschiedene Lösungsansätze, auf die im weiteren Verlauf näher eingegangen wird.
apache  authentication  certificate  howto 
november 2010 by jchris
Sicherer Apache mit ModSecurity
Ende 2003 verglich Ivan Ristic das Betreiben eines Webservers mit »Russisch Roulette« (vgl. Introducing mod_security). Gleichzeitig machte er auch auf eine - von ihm - entwickelte Lösung zur Schadensbegrenzung aufmerksam. Das Programm mod_security bietet verschiedene Mechanismen zur Erkennung, Abwehr und Protokollierung von Angriffen auf Webserver. -=- Genau genommen handelt es sich bei mod_security um ein Modul zur »Feststellung und Verhinderung von Einbrüchen in Webserver« (Web Intrusion Detection and Prevention). Die Funktionsweise orientiert sich im wesentlichen an seinem »großen Bruder«, snort. Analog zu diesem IDS (Intrusion Detection System) wird der ein- und ausgehende Datenverkehr auf bestimmte Merkmale (»Signaturen«) untersucht, die für einen »Angriff typisch sind«. Wird eines dieser festgelegten Angriffs-Muster erkannt, wird eine vorherher definierte Aktion ausgeführt.
howto  apache  mod_security 
november 2010 by jchris
Apache 2 with SSL/TLS: Step-by-Step, Part 3
Now, in the third and final article, we will take a look at client authentication using client certificates, show how to chroot a secure Apache, discuss common attack vectors, and then describe some typical configuration mistakes made by administrators that will decrease the security level of SSL communications.
apache  https  ssl  tls  howto  sysadmin  webmaster 
march 2010 by jchris
Apache 2 with SSL/TLS: Step-by-Step, Part 2
Part two now discusses the recommended settings for the mod_ssl module that lets us achieve maximum security and optimal performance. The reader will also see how to create a local Certification Authority and a SSL certificate based on the free and open-source OpenSSL library.
apache  https  ssl  tls  howto  sysadmin  webmaster 
march 2010 by jchris
Apache 2 with SSL/TLS: Step-by-Step, Part 1
This article begins a series of three articles dedicated to configuring Apache 2.0 with SSL/TLS support in order to ensure maximum security and optimal performance of the SSL communication. This article, part one, introduces key aspects of SSL/TLS and then shows how to install and configure Apache 2.0 with support for these protocols. The second part discusses the configuration of mod_ssl, and then addresses issues with web server authentication. The second article also shows how to create web server's SSL certificate. The third and final article in this series discusses client authentication and some typical configuration mistakes made by administrators that may decrease the security level of any SSL communication.
apache  https  tls  ssl  howto  sysadmin  webmaster 
march 2010 by jchris
Content Types - Web Developer Boot Camp
Content Types are a generalization of the concept of file types for use over the internet in email and on the web where file extensions and operating system based metadata are not always available. Content Types are the means by which the appropriate programs are used to view various media types such as web pages, images, and multimedia. -=- The history of Content Types can be traced back to the beginning of email. Although RFC 822 defined the standard for text email messages, the need quickly arose to be able to send messages containing more than just plain text. In order to allow the receiver of a message to determine how to process the non-text portions of a message, the concept of Content Type was introduced in RFC 1049 and [...]
apache  email  mime  knowhow  @toread 
august 2008 by jchris
How to Fix CGI - majordojo
Over the many years of their coexistence, the terms CGI and Perl have become virtually synonymous. This perception that CGI and Perl are one and the same has contributed to some small degree to the perception that Perl is outdated and an inappropriate lan
apache  cgi  mod_perl  perl  php  via:ap 
january 2008 by jchris
HOWTO: Creating your own CA with OpenSSL
This is a HOWTO on creating your own certification authority (CA) with OpenSSL.
apache  certificate  howto  openssl  ssl 
november 2006 by jchris
Bake, Don’t Fry (Aaron Swartz: The Weblog)
Some people seem to think that I want to bake because of perfomance. Honestly, I don’t care about performance. I don’t care about performance! I care about not having to maintain cranky AOLserver, Postgres and Oracle installs. I care about being able
blog  apache  webdesign 
september 2006 by jchris
FastCGI Home
FastCGI is a language independent, scalable, open extension to CGI that provides high performance without the limitations of server specific APIs. See the docs for more details.
apache  apache2  cgi  fastcgi  webmaster 
september 2006 by jchris
Cruft-free URLs in Movable Type [dive into mark]
Several people have noticed that my URL format has recently changed. Previously I was using a munged form of the entry title, but now I’m using a simpler form. For instance, my wildly popular How to install Windows XP in five hours or less has the clean
apache  blog  usability  webdesign 
september 2006 by jchris
HTMLWorld - Apache
Der Apache Webserver ist einer der am häufigsten eingesetzten Webserverprogramme der Welt. Er konnte und kann sich auch heute erfolgreich gegen seine Konkurrenten Microsoft und Netscape erfolgreich durchsetzen und läuft laut Netcraft auf fast über 70%
apache  apache2  tutorial  webmaster 
august 2006 by jchris
Unicode Html Apache Perl Xml Notes - The Appropriate Civil Society Wiki
Here's a page with a number of reminders for how to write multi-language Web applications in Perl against Apache, whilst using XML/DOM.pm and CGI.pm.
apache  perl  unicode  xml  encoding  wiki 
june 2006 by jchris
TBNL - A Toolkit for Dynamic Lisp Websites
TBNL is a toolkit for building dynamic websites with Common Lisp. It can sit behind front-ends like Hunchentoot, Araneida (two web servers written in Common Lisp), or the popular Apache combined with Marc Battyani's mod_lisp. It can also pretend to be a H
lisp  common-lisp  web  programming  framework  apache  mod_lisp 
may 2006 by jchris
ONLamp.com -- Writing Apache's Logs to MySQL
In Profiling LAMP Applications with Apache's Blackbox Logs, I discussed using Apache's built-in logging directives to record server performance metrics. By recording performance metrics, web server administrators can have a historical record of how the se
apache  database  howto  mysql  sysadmin  webmaster  onlamp  oreilly 
april 2006 by jchris
mod_perl: Apache2::HookRun - Perl API for Invoking Apache HTTP phases
Apache2::HookRun exposes parts of the Apache HTTP protocol implementation, responsible for invoking callbacks for each HTTP Request cycle phase.

Armed with that API, you could run some of the http protocol framework parts when implementing your own pro
apache  apache2  http  mod_perl  webmaster 
april 2006 by jchris
OpenSSL notes
Creating personal certificates and using them for HTTP authentication --
To make a personal certificate (like the ones you can buy from Verisign) we
simply make a new certificate as usual and export it in pkcs12 format.
apache  howto  https  openssl  security  pkcs12 
february 2006 by jchris
Apache2 multiple SSL Virtual Hosts - Stombi Home Page
Name-Based Virtual Hosting is a very popular method of identifying different virtual hosts. It allows you to use the same IP address and the same port number for many different sites. When people move on to SSL, it seems natural to assume that the same me
apache  ssl  knowhow  sysadmin 
february 2006 by jchris
NTLM auth module for Apache/Unix
NTLM is an authentication protocol used by Microsoft Internet Informations Server(tm) and Microsoft Internet Explorer(tm). While it is not really secure, it offers background authentication (the workstation logon credentials of users are passed through to
apache  authentication  webmaster 
december 2005 by jchris
Howto make Friendly URLs
Massage your URLs into a user friendly form with the help of apache's mod_rewrite module.
apache  usability  webdesign  mod_rewrite  webmaster 
december 2005 by jchris
mod_perl in 30 minutes
step-by-step installation and configuration scenarios
perl  apache  webmaster  howto 
september 2005 by jchris

Copy this bookmark: