Hello,The following article shows how to set up OpenVPN with Nginx:
https://snikt.net/blog/2016/12/01/how-not-to-hide-openvpn-behind-https/ssl/
I want to use Apache for this. Is /etc/nginx/sites-enabled/default equivalent
to /etc/apache2/httpd.conf?
Thank you.
that bash needlessly
either product.
On Sat, Sep 30, 2023 at 3:09 AM Jason Long wrote:
Hello,
Thank you so much for your info.
Why are they trollish? I am curious to learn more.
Is there a fair comparison between Apache and Nginx?
On Saturday, September 30, 2023 at 10:35:12 AM GMT+3:30, Frank Gingras
3 at 12:26 PM, Deepak Goel wrote:
On Sat, 30 Sept 2023, 12:26 Jason Long, wrote:
Hello,
Is the following sentence correct?
"The way Apache loads PHP in its standard setup (with mod_php) compared to
Nginx alone puts it at a disadvantage. You will see performance gains,
particularly
hich leaves out very important
> details.
>
> On Sat, Sep 30, 2023 at 2:56 AM Jason Long
> wrote:
>> Hello,
>> Is the following sentence correct?
>> "The way Apache loads PHP in its standard setup (with mod_php) compared to
>> Nginx alone puts it at a disadva
Hello,
Is the following sentence correct?
"The way Apache loads PHP in its standard setup (with mod_php) compared to
Nginx alone puts it at a disadvantage. You will see performance gains,
particularly in memory usage, just by switching to Nginx, given you're using a
PHP-driven application."
system.
On Sun, Sep 24, 2023 at 1:56 PM Jason Long wrote:
Hello,If a vulnerability is found in the Apache web server, then does that
vulnerability work both in Apache under Linux and Windows operating systems?
Thank you.
Hello,If a vulnerability is found in the Apache web server, then does that
vulnerability work both in Apache under Linux and Windows operating systems?
Thank you.
apachectl -M to see the loaded
mpm.
On Fri, Sep 15, 2023 at 6:19 PM Jason Long wrote:
> Hello,
> What happens if I use both modules at the same time?
>
>
>
>>
>>
>> On Fri, Sep 15, 2023 at 3:08 PM, Daniel Ferradal
>> wrote:
>>
>>
>&
Hello,What happens if I use both modules at the same time?
On Fri, Sep 15, 2023 at 3:08 PM, Daniel Ferradal wrote:
El vie, 15 sept 2023 a las 13:36, Daniel Ferradal ()
escribió:
When I probably recommended MaxSpareThreads == to MaxRequestWorkers was due to
Apache httpd with third
Hello,Thank you so much.Can you share an ideal Apache configuration file?
Something like a template.
On Fri, Sep 15, 2023 at 1:17 AM, Stormy wrote: On
2023-09-14 16:01, Jason Long wrote:
> Hello,
> Thanks again.
> How about the other parameters? For example, how can I estimate
at 5:45 PM Stormy wrote:
On 2023-09-14 16:01, Jason Long wrote:
> Hello,
> Thanks again.
> How about the other parameters? For example, how can I estimate the best
> value for "MaxRequestsPerChild", "ThreadsPerChild" and etc.?
What is wrong with the default values
.
On Thu, Sep 14, 2023 at 2:47 PM Jason Long wrote:
Hello,Thanks again.So, I must remove the "mpm_prefork_module" section. Am I
right?
Can you show me an Apache configuration template for use with Wordpress?
When I must use "mpm_prefork_module"?
On Thu, Sep 14, 202
the httpd processes, yes. The rest of the RAM will go towards
php and MySQL.
Since wordpress is involved, you'll want to use the event mpm (nor prefork, nor
event), proxy_fcgi and php-fpm. See:
https://cwiki.apache.org/confluence/display/HTTPD/PHP-FPM
On Thu, Sep 14, 2023 at 6:21 AM Jason Long
r dynamic language is involved, then the answer will depend on
what you use. You should also consider if other services use RAM, such as a
rdbms.
On Wed, Sep 13, 2023 at 8:52 AM Jason Long wrote:
Hello,
My server has 6 GB RAM and 4 virtual CPUs. I want to know How can I change the
following settings for
Hello,
My server has 6 GB RAM and 4 virtual CPUs. I want to know How can I change the
following settings for better performance?
Timeout 45
KeepAlive On
MaxKeepAliveRequests 100
KeepAliveTimeout 15
StartServers 3
MinSpareServers 3
MaxSpareServers 3
Hello,
I set a password for my WordPress admin panel and its worked, but stopped
suddenly!
I opened “.htaccess” file and added below lines to it:
### BEGIN DIGEST BLOCK
AuthType Digest
AuthName "Protected by AskApache"
AuthDigestDomain /wp-login.php https://My_Web_Site.com/wp-login.php
Type the URL in the "Request Headers" and "Request Content" fields?
On Sunday, September 5, 2021, 06:52:50 PM GMT+4:30, Eric Covener
wrote:
On Sun, Sep 5, 2021 at 9:45 AM Jason Long wrote:
>
> Thanks.
> I found "https://www.test-cors.org/; to t
Thanks.
I found "https://www.test-cors.org/; to test the CORS. How about the values of
the "Request Headers" and "Request Content" fields? Can you show me an example?
On Sunday, September 5, 2021, 05:02:15 PM GMT+4:30, Eric Covener
wrote:
On Sun, Sep 5, 2
Hello,
I read
Hello,
Any idea?
On Sunday, August 29, 2021, 07:13:07 PM GMT+4:30, Jason Long
wrote:
Hello,
I scanned my website with the Acunetix tool and below vulnerabilities found:
1- Cookie(s) without HttpOnly flag set
2- Disable OPTIONS Method
3- CORS (Cross-Origin Resource Sharing) origin
Hello,
I scanned my website with the Acunetix tool and below vulnerabilities found:
1- Cookie(s) without HttpOnly flag set
2- Disable OPTIONS Method
3- CORS (Cross-Origin Resource Sharing) origin validation failure
To solve these problems, I added below lines to my Virtual Host configuration
Hello,
Is proxy to proxy improving the security? For example:
The Internet --> Reverse Proxy Server --> Reverse Proxy Server --> Web Site
Thank you.
-
To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org
For additional
Thank you Michael.
On Tuesday, April 20, 2021, 12:35:08 AM GMT+4:30, Michael Wechner
wrote:
sure, happy to help! I also received a lot of help on mailing lists :-)
I also understand Nick's statement though, that in order to learn, you
have to dig in yourself.
But it can be a
examples on-line.
On Mon, Apr 19, 2021 at 2:14 PM Jason Long wrote:
> Thank you Michael.
> I changed my Virtual Host config file as below:
>
>
> ServerName 192.168.56.9
> ErrorLog ${APACHE_LOG_DIR}/error_log
> CustomLog ${APACHE_LOG_DIR}/access_log combined
>
Thank you Michael.
I changed my Virtual Host config file as below:
ServerName 192.168.56.9
ErrorLog ${APACHE_LOG_DIR}/error_log
CustomLog ${APACHE_LOG_DIR}/access_log combined
RewriteEngine on
RewriteCond %{SERVER_NAME} =192.168.56.9 [OR]
RewriteCond %{SERVER_NAME}
om/wp-content/uploads/2020/05/SSL-Certificate-Warning.png;
error too.
On Monday, April 19, 2021, 03:18:25 PM GMT+4:30, Nick Folino
wrote:
http://httpd.apache.org/docs/2.4/ssl/
Nick
On Mon, Apr 19, 2021 at 6:37 AM Jason Long wrote:
> Thank you.
> On my Apache Reverse Proxy, I h
oxy (Public
IP) ---> Web Site (Internal IP)" is protected, you might also want to
consider a self-signed certificate for "Web Site (Internal IP)"
HTH
Michael
Am 19.04.21 um 12:07 schrieb Jason Long:
> Hello,
> In below diagram, which server must use HTTPS certification?
&
Hello,
In below diagram, which server must use HTTPS certification?
The Internet ---> Apache Reverse Proxy (Public IP) ---> Web Site (Internal IP)
Thank you.
-
To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org
For
Sure.
Thank you.
On Wednesday, March 17, 2021, 08:26:40 PM GMT+3:30, Antony Stone
wrote:
On Wednesday 17 March 2021 at 17:44:07, Jason Long wrote:
> No, it is not home work.
What Eric means is that you should start trying to solve some of these
problems on your own, and not
t to properly server. Right?
On Wednesday, March 17, 2021, 08:17:29 PM GMT+3:30, Antony Stone
wrote:
On Wednesday 17 March 2021 at 17:33:46, Jason Long wrote:
> The load balancing is different. It is kind of HA.
Yes.
> When my real server is down then Apache forward requests
ers.
On Wednesday, March 17, 2021, 08:11:51 PM GMT+3:30, Eric Covener
wrote:
On Wed, Mar 17, 2021 at 12:36 PM Jason Long wrote:
>
> Why this is a matter to the Apache? In a real scenario, consider that an
> Apache Reverse Proxy servicing to 100 web servers, one of these servers is
No, it is not home work.
On Wednesday, March 17, 2021, 08:11:51 PM GMT+3:30, Eric Covener
wrote:
On Wed, Mar 17, 2021 at 12:36 PM Jason Long wrote:
>
> Why this is a matter to the Apache? In a real scenario, consider that an
> Apache Reverse Proxy servicing to 100 web ser
//1.2.3.5/
ProxyPassReverse http://1.2.3.5/
On Wednesday, March 17, 2021, 07:54:53 PM GMT+3:30, Antony Stone
wrote:
On Wednesday 17 March 2021 at 17:05:37, Jason Long wrote:
> Thank you.
> My VM uses port forwarding. When I browse 127.0.0.1:2080 on my host then it
&g
configuration?
On Wednesday, March 17, 2021, 07:45:47 PM GMT+3:30, Eric Covener
wrote:
On Wed, Mar 17, 2021 at 12:05 PM Jason Long wrote:
>
> Thank you.
> My VM uses port forwarding. When I browse 127.0.0.1:2080 on my host then it
> forwarded to my guest port 80.
&
her server. I used "
" and not any IP.
On Wednesday, March 17, 2021, 05:57:50 PM GMT+3:30, Antony Stone
wrote:
On Wednesday 17 March 2021 at 15:15:49, Jason Long wrote:
> One of my Apache server (192.168.1.4) is turned off and I tried to see my
> server.
Please speci
Antony Stone
wrote:
On Wednesday 17 March 2021 at 14:57:06, Jason Long wrote:
> My current configuration is:
>
>
> ServerName node3
> ErrorLog /var/log/httpd/error_log
> TransferLog /var/log/httpd/access_log
>
I don't like the look of the / in that tag. It'
Wednesday 17 March 2021 at 14:40:32, Jason Long wrote:
> Thank you.
> Which part of my configuration is wrong?
I don't know. I've lost track of what your configuration looks like now.
> My Reverse Proxy can see my Apache web servers and as I said, its worked
> with one host, but can'
GMT+3:30, Antony Stone
wrote:
On Wednesday 17 March 2021 at 14:28:29, Jason Long wrote:
> I want to have one Reverse Proxy server that service to some web servers
> that each of them has theirs domains and IPs. I want to know, for 10
> different websites that each of them has diff
at 13:25:34, Jason Long wrote:
> No, I don't need a load balance.
Okay, so each request goes to one back-end server, and if that server is
unavailable, the request fails. You do not expect the request to be sent to
another backend server instead.
> I want my Reverse Proxy service to the
om server.
Is it clear? Examples that I found was about subdomain or...
On Wednesday, March 17, 2021, 03:43:26 PM GMT+3:30, Eric Covener
wrote:
On Wed, Mar 17, 2021 at 8:09 AM Jason Long wrote:
>
> Thank you.
> I saw https://stackoverflow.com/questions/50611098. I tested it, b
2021 at 12:34:44, Jason Long wrote:
> I'm a newbie and as you said you are here from 2010. OK, tell me how can I
> configure an Apache Reverse Proxy to service to the multiple web servers?
I did a Google search for "Apache reverse proxy multiple web servers".
https://stackoverfl
://httpd.apache.org/docs/2.4/howto/reverse_proxy.html
No example!
Here is for questions and answers, not to spread hatred.
On Wednesday, March 17, 2021, 01:57:52 AM GMT+3:30, Stormy
wrote:
On 2021-03-16 5:43 p.m., Jason Long wrote:
> I used Name-based Virtual Host too:
Dear moderators,
I h
M GMT+3:30, Jason Long
wrote:
I created two files under "/etc/httpd/conf.d" directory:
reverse_proxy1.conf
reverse_proxy2.conf
The content of reverse_proxy1.conf file:
ProxyPreserveHost On
ProxyPass / http://192.168.1.20/
ProxyPassReverse / http://192.168
;GET / HTTP/1.1" 503 299 "-"
"Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko)
Chrome/89.0.4389.86 Safari/537.36"
When I remove one of the .conf file, then it worked.
On Wednesday, March 17, 2021, 12:34:50 AM GMT+3:30, Eric Covener
wrote:
On
virtual hosts) or path... Either way
you'd need to decide how you want to distinguish from the user's point of view
which server the request is for.
Am 16.03.21, 21:23 schrieb Jason Long :
> Thanks.
> Thus, I can one .conf file under the "/etc/httpd/conf.d/" directory with
2021 a las 21:23, Jason Long
() escribió:
>
> Thanks.
> Thus, I can one .conf file under the "/etc/httpd/conf.d/" directory with some
> servers. For example,
>
> #Server 1
>
> ProxyPreserveHost On
> ProxyPass / http://192.168.1.4/
>
ProxyPass / http://192.168.1./
ProxyPassReverse / http://192.168.1.5/
Am I right?
On Tuesday, March 16, 2021, 10:01:27 PM GMT+3:30, Antony Stone
wrote:
On Tuesday 16 March 2021 at 19:16:56, Jason Long wrote:
> Hello,
> For a website, I created a reverse proxy c
Thank you so much.
On Tuesday, March 16, 2021, 12:44:45 PM GMT+3:30, Antony Stone
wrote:
On Tuesday 16 March 2021 at 09:13:54, Jason Long wrote:
> Hello,
> Instead of "ErrorDocument 403 "Unusual activity has been detected from
> this IP address."&quo
Hello,
For a website, I created a reverse proxy config file under the
"/etc/httpd/conf.d/" directory as below:
ProxyPreserveHost On
ProxyPass / http://192.168.1.4/
ProxyPassReverse / http://192.168.1.4/
If I have other servers, then I must create a config file for each
Hello,
Instead of "ErrorDocument 403 "Unusual activity has been detected from this
IP address."" message, how can I forward it to another page?
Thanks.
On Monday, March 15, 2021, 11:49:41 PM GMT+3:30, Jason Long
wrote:
I solved the problem:
I solved the problem:
Require all granted
Include conf/tor-ip.conf
ErrorDocument 403 "Unusual activity has been detected from this IP
address."
On Monday, March 15, 2021, 10:28:22 PM GMT+3:30, Antony Stone
wrote:
On Monday 15 March 2021 at 18:37:40,
I have a question. My website configuration must be inside of "..." ?
My "..." is outside of VirtualHost!
Please see: https://paste.ubuntu.com/p/fGsHN6mz8G/
On Monday, March 15, 2021, 09:08:11 PM GMT+3:30, Jason Long
wrote:
Yes. I saw the same IP address.
Yes. I saw the same IP address.
What is the problem?
On Monday, March 15, 2021, 05:07:07 PM GMT+3:30, Antony Stone
wrote:
On Monday 15 March 2021 at 14:23:18, Jason Long wrote:
> Thank you.
> As I said, I visted https://www.myip.com/ website without Tor Browser and
> it sho
Yes.
I create a load balancer my Apache website, but I'm thinking about my Reverse
Proxy itself.
On Monday, March 15, 2021, 04:15:52 PM GMT+3:30, Jim Albert
wrote:
On 3/15/2021 7:25 AM, Jason Long wrote:
> Thanks.
> Thus, Apache can't help me about it? I need somethin
me my IP is : 79.99.83.*
On Monday, March 15, 2021, 04:34:12 PM GMT+3:30, Antony Stone
wrote:
On Monday 15 March 2021 at 13:48:27, Jason Long wrote:
> Thank you.
> I guess something is wrong!
I agree with you.
> I put my IP address
Please answer, in as much detail a
IP address is
"1.2.3.4", but in Apache log, my IP address is "1.2.3.5".
Please see: https://paste.ubuntu.com/p/BhWN6dmCJX/
On Monday, March 15, 2021, 04:01:58 PM GMT+3:30, Antony Stone
wrote:
On Monday 15 March 2021 at 12:22:07, Jason Long wrote:
> Thank you.
&
jue, 11 mar 2021 a las 20:29, Jason Long
() escribió:
>
> Hello,
> I configured my Apache Reverse Proxy as a Load Balancer to handle Back-End
> servers. When a Back-End server stopped, then another one provide service.
> How can I do it with Reverse Proxy server itself? When
conf | grep "IP"
Require not ip "IP"
Why?
On Monday, March 15, 2021, 01:29:31 AM GMT+3:30, Antony Stone
wrote:
On Sunday 14 March 2021 at 20:37:15, Jason Long wrote:
> I can visit my website with the Tor Browser!!!
Look in your website log files to find out w
can visit my website with the Tor Browser!!!
On Sunday, March 14, 2021, 11:00:19 PM GMT+3:30, Eric Covener
wrote:
On Sun, Mar 14, 2021 at 3:25 PM Jason Long wrote:
>
> Thanks.
> I commented that line and got below error:
>
> # apachectl configtest
> [Sun Mar 14 22:51:10.
/03/2021 à 17:23, Jason Long a écrit :
> Yes:
>
>
> Options -Indexes
> AllowOverride All
> Require all granted
> Include conf.d/tor-ip.conf
>
>
>
That is not my point.
How your conf files are loaded (the one for your vh, ...)?
Sometimes the "main&quo
Yes:
Options -Indexes
AllowOverride All
Require all granted
Include conf.d/tor-ip.conf
On Sunday, March 14, 2021, 07:04:15 PM GMT+3:30, Christophe JAILLET
wrote:
Le 14/03/2021 à 14:59, Jason Long a écrit :
> Hello,
> I want to block Tor IP addresses and I downloaded a list
at 10:00 AM Jason Long wrote:
> Hello,
> I want to block Tor IP addresses and I downloaded a list of Tor IP addresses
> and put it as a "tor-ip.conf" file under the "/etc/httpd/conf.d/" directory.
> Then edited my Virtual Host configuration file as below:
>
&
Hello,
I want to block Tor IP addresses and I downloaded a list of Tor IP addresses
and put it as a "tor-ip.conf" file under the "/etc/httpd/conf.d/" directory.
Then edited my Virtual Host configuration file as below:
Options -Indexes
AllowOverride All
Require all granted
Include
:34 AM Jason Long wrote:
> Hello,
> Is it true that NGINX is faster than Apache?
>
> https://www.hostingadvice.com/how-to/nginx-vs-apache/
>
> In which environment, Apache must use?
>
> Thank you.
>
> ---
Sorry. I asked it because in a tutorial, the author talked about configuring
Apache Tomcat on the Back-End servers first.
On Thursday, March 11, 2021, 11:06:18 PM GMT+3:30, Eric Covener
wrote:
On Thu, Mar 11, 2021 at 2:33 PM Jason Long wrote:
>
> Hello,
> Is Apache Tomc
Hello,
Is Apache Tomcat needed to launch a Load Balancer?
Thank you.
-
To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org
For additional commands, e-mail: users-h...@httpd.apache.org
Hello,
I configured my Apache Reverse Proxy as a Load Balancer to handle Back-End
servers. When a Back-End server stopped, then another one provide service.
How can I do it with Reverse Proxy server itself? When a Reverse Proxy stopped,
then another Reverse Proxy provides services?
Thank you.
it is to restrictive (it breaks
wordpress admin ) so we don't actually use it
-Original Message-
From: Jason Long
Sent: 11 March 2021 18:47
To: users@httpd.apache.org
Subject: Re: [users@httpd] What should be considered about the reverse proxy
server? [EXT]
Thank you.
How about questions number 2 and 3
proxy is between the internet and the webserver
There are some issues with mod_security and e.g. wordpress sites - so you have
to take care to tune it - we often just use a set of general rules to act as a
first level of security
-Original Message-
From: Jason Long
Sent: 11 March 2021
Hello,
Is it true that NGINX is faster than Apache?
https://www.hostingadvice.com/how-to/nginx-vs-apache/
In which environment, Apache must use?
Thank you.
-
To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org
For
r), need I to install Apache Web Server on the
Front-End server?
3- Can anyone tell me what is the main difference between the Forward Proxy and
Reverse Proxy?
On Thursday, March 11, 2021, 07:14:29 PM GMT+3:30, Antony Stone
wrote:
On Thursday 11 March 2021 at 15:35:17, Jason Long wrote
You can also add/remove headers on the way in/out.
-Original Message-
From: Jason Long
Sent: 11 March 2021 12:21
To: users@httpd.apache.org
Subject: Re: [users@httpd] What should be considered about the reverse proxy
server? [EXT]
Hello,
Can anyone answer to my questions?
1- What
M GMT+3:30, Jason Long
wrote:
Thank you so much.
Thus, The Front end and Back end servers are same about the security.
What does "handle backend server down" mean?
On Tuesday, March 9, 2021, 04:30:01 PM GMT+3:30, James Smith
wrote:
Yes - you should harden the front
Thank you so much.
Thus, The Front end and Back end servers are same about the security.
What does "handle backend server down" mean?
On Tuesday, March 9, 2021, 04:30:01 PM GMT+3:30, James Smith
wrote:
Yes - you should harden the front-end as this is what is likely to be
compromised
Hello,
Thank you.
I meant was the front end (Reverse Proxy) need any Apache hardening? Or just
Back end (WordPress and etc) need hardening?
Can anyone show me a complete Reverse Proxy configuration example?
On Tuesday, March 9, 2021, 02:03:23 AM GMT+3:30, Dino Ciuffetti
wrote:
>
>
Hello,
I launched a reverse proxy server by Apache with below configuration:
ProxyPreserveHost On
ProxyPass / http://Server-IP/
ProxyPassReverse / http://Server-IP/
I have some questions:
1- the real work of a proxy server is just that lines?
2- The real configuration
Problem solved.
It was because of SELinux:
# setsebool -P httpd_can_network_connect on
On Saturday, March 6, 2021, 10:11:27 PM GMT+3:30, Jason Long
wrote:
Thanks.
On VM1, I used VirtualBox Port Forwarding:
Protocol Host IP Host Port Guest IP Guest Port
Thanks.
On VM1, I used VirtualBox Port Forwarding:
Protocol Host IP Host Port Guest IP Guest Port
TCP 127.0.0.1 2080 10.0.3.15 80
When I enter "127.0.0.1:2080" in my browser, then logs on VM1 are:
# cat access_log
10.0.3.2 -
Hello,
I created two VMs in the VirtualBox. One of them is Reverse Proxy server and
another one is Apache Web Server.
The specifications of VM1 (Reverse Proxy) are as follows:
NIC 1 is NAT and Its IP address is "10.0.3.15".
NIC 2 is Internal Network and its IP address is "192.168.1.3".
The
Thank you.
If Apache can do it, then why ATS?
On Saturday, March 6, 2021, 05:21:04 PM GMT+3:30, William Dumangeng Jr
wrote:
Yes, Apache httpd can be a Reverse proxy too using "ProxyPass" directive in the
config file.
On Sat, Mar 6, 2021 at 9:35 PM Jason Long wrote
Thanks.
Apache can't do it?
On Saturday, March 6, 2021, 05:02:44 PM GMT+3:30, William Dumangeng Jr
wrote:
Reverse proxy software like Nginx, ATS or Varnish. Install any of those
software and the WAF in the same host.
On Sat, Mar 6, 2021 at 7:07 PM Jason Long wrote:
> Hi Will
Apache(Private
IP)
On Fri, Mar 5, 2021 at 7:26 PM Jason Long wrote:
> Hello,
> I want to launch a ModSecurity or an IDS\IPS as a reverse proxy and I have
> some questions. I'm a beginner and I'm thankful if anyone help me. My goal is:
>
> The Internet --> WAF or IDS\IPS -->
Hello,
I want to launch a ModSecurity or an IDS\IPS as a reverse proxy and I have some
questions. I'm a beginner and I'm thankful if anyone help me. My goal is:
The Internet --> WAF or IDS\IPS --> Web Server
My questions are:
1- On WAF server, I need Apache too?
2- Should I set the web server
Hello,I'm using CentOS and installed ModSecurity with below command:
# yum install mod_security mod_security_crs
After it, edited "/etc/httpd/conf.d/mod_security.conf" file and changed
"SecRuleEngine DetectionOnly" to "SecRuleEngine On" and restarted Apache
service.Any header or configuration
t?
On Tuesday, February 9, 2021, 06:39:57 PM GMT+3:30, Eric Covener
wrote:
On Tue, Feb 9, 2021 at 10:08 AM Jason Long wrote:
>
> Hello,
> I want to set a password for the WordPress logging page and when someone
> visit "https://mywebsite.com/wp-admin; then Ap
Hello,
I want to set a password for the WordPress logging page and when someone visit
"https://mywebsite.com/wp-admin; then Apache asks a username and password and
then show the logging page. Something like
https://www.tecmint.com/phpmyadmin-login-password-protection-htaccess/
If my WordPress
ind easier.
On Mon, Feb 8, 2021 at 11:00 AM Jason Long wrote:
>
> Thank you for your useful information.
> I checked my server with "https://securityheaders.com/ [securityheaders.com]"
> and result is:
> https://i.postimg.cc/SsBBtRsT/Header.png [i.postimg.cc]
>
>
What do you mean?
On Monday, February 8, 2021, 09:00:46 PM GMT+3:30, Nick Folino
wrote:
What a great site! It consolidates weak servers for hackers to find easier.
On Mon, Feb 8, 2021 at 11:00 AM Jason Long wrote:
> Thank you for your useful information.
> I checked my
Thank you for your useful information.
I checked my server with "https://securityheaders.com/; and result is:
https://i.postimg.cc/SsBBtRsT/Header.png
To solve the Content Security Policy, I added below line to "httpd.conf":
Header set Content-Security-Policy "default-src 'self';"
But after it
Hello,
I scanned my Apache web server and below Vulnerabilities discovered:
1- Content Security Policy (CSP) Header Not Set
2- HTTP to HTTPS Insecure Transition in Form Post
3- Reverse Tabnabbing
4- Source Code Disclosure - PHP
5- Source Code Disclosure - Perl
6- Sub Resource Integrity Attribute
Hello,
Any idea?
On Friday, January 29, 2021, 04:07:30 PM GMT+3:30, Jason Long
wrote:
Thank you for your reply.
The "wp-content" directory is a sub-directory of "wp" directory:
$ ls /var/www/wp/
cgi-bin
ry Listing for all directories except
"wp-includes" directory then what should my settings be like?
Thank you.
On Friday, January 22, 2021, 01:11:41 AM GMT+3:30, Antony Stone
wrote:
On Thursday 21 January 2021 at 22:09:39, Jason Long wrote:
> I did:
>
> Options -
Thank you.
I did:
Options -Indexes
AllowOverride All
Require all granted
But when I browse "https://MyDomain.net/wp-content/plugins; then I can see the
content of the plugins directory!
Why?
On Thursday, January 21, 2021, 07:56:38 PM GMT+3:30, Dino Ciuffetti
wrote:
> Is it
Hello,
Is it possible to disable Directory Listing for a directory and its
sub-directory except one of them?
For example, I used "Options -Indexes" and my directory have two
sub-directories "Dir1" and "Dir2", but I like Directory Listing enabled for
"Dir2".
Thank you.
Hello,
I want to disable Directory Listing on my server and my Virtual Server
configuration is:
Options -Indexes
AllowOverride All
Require all granted
Is it OK and safe?
Thank you.
-
To unsubscribe, e-mail:
>s %b \"%{Referer}i\" \"%{User-Agent}i\" %I %O"
combinedio
On Thursday, January 14, 2021, 11:43:33 PM GMT+3:30, Richard
wrote:
You should look at adding the %D and %T format strings to your httpd
access log configuration so that you can capture the
Server have 4 CPU cores and 6GB of RAM.
I pasted Apache configuration. In your opinion, which parts of servers must be
examine?
On Wednesday, January 13, 2021, 08:30:58 PM GMT+3:30, @lbutlr
wrote:
> On 12 Jan 2021, at 01:52, Jason Long wrote:
>
> It show me:
>
>
Hello,
Can I use "htcacheclean" for clean memory instead of reset Apache service?
Thank you.
-
To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org
For additional commands, e-mail: users-h...@httpd.apache.org
the server to swap -
If you are permanently using a lot of swap then that slows down your processes
and can cause your request to back up (a bit like a traffic jam)
You should only really have about 20-30 modules running.
-Original Message-
From: Jason Long
Sent: 12 January 2021 11:14
incoming traffic you can do:
netstat -n | grep ':443 ' | grep -v TIME_WAIT
The incoming IP should be the 2nd address
(or ':80 ' if you aren't doing SSL)
Remove the grep -v TIME_WAIT to see all connections {and recent connections}
-Original Message-
From: Jason Long
Sent: 12 January 2021
1 - 100 of 174 matches
Mail list logo