Tagged: Apache

Harden Apache 2.2

sudo vi /etc/apache2/conf.d/security ServerTokens Prod ServerSignature Off sudo vi /etc/apache2/sites-available/default Directory /var/www/html> Options -Indexes /Directory> https://www.linuxquestions.org/questions/blog/rearden888-507430/howto-set-up-modsecurity-on-debian-7-35569/

Apache2 Invalid method in request \x16\x03\x01

Apache2 reports an error “Invalid method in request \x16\x03\x01” Check that the IP address is correct in line #8 of /etc/apache2/sites-available/www.example.com <VirtualHost *:80> ServerAdmin webmaster@seleads.com ServerName www.example.com ServerAlias example.com Redirect 301 http://example.com http://www.example.com/ DocumentRoot /var/www/www.example.com/ </VirtualHost> <VirtualHost 199.199.199.199:443> SSLEngine on ServerName example.com SSLCACertificateFile /etc/apache2/ssl/PrimaryRootCA.crt SSLCertificateChainFile /etc/apache2/ssl/Thawte_DV_SSL_CA_Bundle.crt SSLCertificateFile /etc/apache2/ssl/example.crt SSLCertificateKeyFile /etc/apache2/ssl/private/example.key DocumentRoot /var/www/www.example.com/ </VirtualHost>

How to Customize Apache Log Format for Fail2ban

Customize apache2 other_vhosts_access.log format so fail2ban can use it. sudo vi /etc/apache2/apache2.conf On line 255 insert LogFormat “%t %v:%p %h %l %u \”%r\” %>s %O \”%{Referer}i\” \”%{User-Agent}i\”” fail2ban Comment out the following line #LogFormat “%v:%p %h %l %u %t \”%r\” %>s %O \”%{Referer}i\” \”%{User-Agent}i\”” vhost_combined sudo vi /etc/apache2/conf.d/other-vhosts-access-log change the end of the line (or duplicate and comment out) as...

Fail2ban Apache2 Access Log Regex Fails

Changing banaction to ROUTE worked, while IPTABLES-ALLPORTS failed with error No Host Found 2014-09-26 10:55:24,662 fail2ban.filter : ERROR No ‘host’ found in ‘113.71.191.49 – – [ +0000] “GET /phpMyAdmin/scripts/setup.php HTTP/1.1” 500 833 “-” “-” ‘ using ‘‘ [apache-phpmyadmin-access] enabled = true #banaction = iptables-allports banaction = route port = http,https filter = apache-phpmyadmin-access logpath = /var/log/apache2/access.log maxretry = 0 #...

How to Enable PHP Error Logging

sudo vi /etc/php5/apache2/php.ini error_reporting = E_ALL | E_STRICT error_log = /var/log/php_errors.log You must create the (log) file manually touch /var/log/php_errors.log chown www-data: /var/log/php_errors.log chmod +rw /var/log/php_errors.log

Fix Magento Missing Images In Checkout Cart

When moving a magento instance to a new server, it seems the product cache exhibits some very strange behavior making a fix to the new server almost impossible after the fact. That means the problem is an imprecise backup and transfer process. The problem seems to be a result of a mismatch between the database and some files (cache).

Apache Permissions on ServerRoot Directories

Apache Permissions on ServerRoot Directories In typical operation, Apache is started by the root user, and it switches to the user defined by the User directive to serve hits. As is the case with any command that root executes, you must take care that it is protected from modification by non-root users. Not only must the files themselves be writable...

FIND Command Usage Notes for Webmasters

File manipulation using FIND These examples are Ubuntu 12.04 and Apache2 FIND find a file by name # sudo find ~/ -name ‘banner3.jpg’ 2>/dev/null find and copy # combined to make a script to double filter sudo find /media/backup01/* -name ‘*.txt’ -exec cp {} ~/dump \; + increases speed sudo find . -name ‘*.py’ -exec grep –color ‘xrange’ {} +...

Eliminate error “127.0.0.1 Directory index forbidden by Options directive” in log files (and other needless noise)

Ubuntu Apache Error : client 127.0.0.1 Directory index forbidden by Options directive This error and many others clog your log files with noise which can be easily eliminated without compromising security. The reason I get this error is because I have set .htaccess in the server root directory to Options -Index for security reasons. I don’t want anyone browsing /var/www...

9 Steps To Setup SSL on UBUNTU 12.04 APACHE 2.22

I found a lot of misleading and confusing How-To stuff when installing an SSL certificate on Ubuntu 12.04 LTS and Apache 2.22. I also share most people confusion when it comes to encryption. Only after a lot of repetition has the fog begun to clear. It helps to realize: The “key” is your PRIVATE file. Don’t ever share it. Its stays...

Apache Virtual Host Example

There are so many variation of how to setup Apache VirtualHost that its difficult for a beginner to figure it all out. Here is how I have found works best for a LAMP server that you own. If its not a standard Linux distro (Debian/Ubuntu here) all bets are off. sudo vi /etc/apache2/sites-available/www.example.com copy this code into the file <VirtualHost...

Privacy Preference Center