|
erics, November 17th, 2017 |
1 2 3 |
RewriteEngine On RewriteCond %{HTTPS} off RewriteRule (.*) https://%{HTTP_HOST}%{REQUEST_URI} |
Categories: How-To's, Technology apache, Apache 2.2, Apache2, howto, http, https, mod_rewrite, redirect, tips
| 
No comments
erics, September 5th, 2017 Step 1: Enable Apache status and lock it down: Make sure mod_status is being loaded:
|
1 2 3 |
shell> grep -Rn mod_status /etc/httpd/* /etc/httpd/conf.modules.d/00-base.conf:58:LoadModule status_module modules/mod_status.so |
Add support for the call just under the first DocumentRoot statement:
|
1 2 3 4 5 6 7 8 |
shell> vim /etc/httpd/conf/httpd.conf <Location /server-status> SetHandler server-status Require ip 127.0.0.1 Require ip ::1 Require ip {Your_IP_Here} </Location> |
Step 2. Prepare your environment:
|
1 |
shell> cpan YAML HTML::TableExtract |
Step 3: Create and run the status script: (See the astat contents at the bottom)
|
1 2 3 4 5 6 7 8 9 |
shell> vim /root/astat shell> chmod 755 /root/astat shell> vi ~/.bashrc ADD: alias ipw='while true; do sleep 5; /root/astat; done' shell> ipw 1.2.3.4|yourdomain.com:443|POST /wp-cron.php?doing_wp_cron=1563901063.57946491241455078125| |
/root/astat
|
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 |
#!/usr/bin/perl use strict; use HTML::TableExtract; # PATH to "curl" utility my $CURL = "/usr/bin/curl"; # URL of the server-status we want to process my $STATUS_URL = "http://localhost/server-status"; # those are the headers in the first row of the table we want to extract # Used by HTML::TableExtract to search for our table, within the whole HTML output my $headers =['Srv','PID','Acc','M','CPU','SS','Req','Conn','Child','Slot','Client','VHost','Request']; # Let's fetch the status page... my $output = `$CURL -s $STATUS_URL`; # Let's search for our table within the HTML... my $tables = HTML::TableExtract->new( headers => $headers ); # We found it (hopefully), so let's parse it... $tables->parse($output); # ...and let's stick to the first one my $status_table = $tables->first_table_found; # Now let's loop allover the rows... foreach my $row_ref ($status_table->rows) { # Let's de-reference the ARRAY reference, so to better manager # the various elements... my @row = @$row_ref; # Let's check for IP next if $row[10]=~/127.0.0.1/; next if $row[10]=~/216.66.125.161/; next if $row[10]=~/69.162.124.235/; # Let's check for an OPTIONS row... if ($row[12]=~/OPTIONS/) { # simply skip to next row in the loop next; } # Let's choose whatever columns we want (first column has index "0") # So here we have Srv, PID, Client and Request #foreach my $column (0,1,10,12) { foreach my $column (10,11,12) { print $row[$column]."|"; } print "\n"; } |
Categories: How-To's, Technology 2.4, apache, Apache 2.4, CPAN, howto, http, httpd, https, mod_status, perl, Status, tips, YAML
| No comments
erics, April 26th, 2016 Add the following to either .htaccess or httpd.conf:
|
1 2 3 4 5 6 7 8 9 |
AddOutputFilterByType DEFLATE text/plain AddOutputFilterByType DEFLATE text/html AddOutputFilterByType DEFLATE text/xml AddOutputFilterByType DEFLATE text/css AddOutputFilterByType DEFLATE application/xml AddOutputFilterByType DEFLATE application/xhtml+xml AddOutputFilterByType DEFLATE application/rss+xml AddOutputFilterByType DEFLATE application/javascript AddOutputFilterByType DEFLATE application/x-javascript |
Categories: How-To's, Technology apache, Apache2, Compress, Compression, gzip, http, Performance, Speed, tuning, Web
| No comments
erics, February 9th, 2016 I was getting the following errors when using an older version of the Amazon EC2 API Tools: $ ec2-describe-regions Unknown problem connecting to host: ‘https://ec2.amazonaws.com’ Unable to execute HTTP request: peer not authenticated The solution was to upgrade to the latest AWS CLI tools and start using the aws command instead. For example: aws ec2 […]
Categories: How-To's, Technology Amazon, API, API Tools, apitools, AWS, awscli, cli, EC2, http, https, Peer, Peer Not Authenticated, Request, Unknown problem
| No comments
erics, September 24th, 2015 The key is to send a response header like this: Access-Control-Allow-Origin: * In the Apache web server, one enables this via the following directive: Header set Access-Control-Allow-Origin * This requires the use of mod_headers, which is enabled by default in Apache. For example:
|
1 2 3 4 5 6 7 8 9 |
LoadModule headers_module modules/mod_headers.so ... <VirtualHost *:80> ServerName www.your.domain ServerAlias *your.domain DocumentRoot /var/www/yourdomain DirectoryIndex index.php index.html Header set Access-Control-Allow-Origin * </VirtualHost> |
Categories: How-To's, Technology Access-Control-Allow-Origin, ajax, apache, cross, cross-site, cross-site javascript, headers, howto, http, javascript, Load, mod_headers, tips, xsite
| No comments
erics, July 26th, 2014 I was getting tired of using iptables to block the various hackers and bots constantly slamming my servers (the Chinese are the worst offenders by far – curse them!). I found the Apache module mod_evasive and installed it. Here are links to various articles about mod_evasive: http://www.zdziarski.com/blog/?page_id=442 https://coderwall.com/p/eouy3g http://www.crucialp.com/resources/tutorials/server-administration/flood-protection-dos-ddos-protection-apache-1.3-2.0-mod_dosevasive-avoiding-denial-of-service-attacks.php Add the Module to Apache I […]
Categories: How-To's, Technology apache, Attack, AWS, AWS Linux, CentOS, DDOS, Defend, dos, evasive, http, mod_evasive, Web
| No comments
erics, March 19th, 2014 After I upgraded to iOS 7.1, Enterprise application deployments no longer worked. I would get the following error: “Cannot install applications because the certificate is not valid”, and the download would fail. As it turns out, Apple changed the rules without notification again, and is now requiring https for part of the process. For those […]
Categories: How-To's, Technology 7.1, apple, AWS, howto, http, https, iOS, iOS 7.1, tips
| 1 comment
erics, May 11th, 2012 $protocol = (!empty($_SERVER[‘HTTPS’]) && $_SERVER[‘HTTPS’] !== ‘off’) ? “https:” : “http:”;
Categories: How-To's, Technology $_SERVER, 443, 80, howto, http, https, php, Port 443, Port 80, Protocol, tips
| No comments
erics, October 26th, 2011 |
1 2 3 |
RewriteEngine On RewriteCond %{HTTPS} off RewriteRule (.*) https://%{HTTP_HOST}%{REQUEST_URI} |
Categories: How-To's, Technology apache, Apache2, Force, howto, http, httpd, httpd.conf, https, mod_rewrite, RewriteCond, RewriteEngine, RewriteRule, tips
| No comments
erics, February 18th, 2011 var myPrefix = ‘https:’ == document.location.protocol ? ‘https://’ : ‘http://’;
Categories: How-To's, Technology howto, http, https, javascript, Protocol, tips
| No comments
