http://www.randombugs.com Just another Bastard Operator From Hell. Everything from *nix to programming Thu, 05 Jan 2012 11:44:55 +0000 en hourly 1 http://wordpress.org/?v=3.3.1 http://www.randombugs.com/php/apache-dynamic-virtual-hosting-php-security.html http://www.randombugs.com/php/apache-dynamic-virtual-hosting-php-security.html#comments Mon, 06 Jun 2011 10:35:21 +0000 admin http://www.randombugs.com/?p=739
It’s been a while since I configured the latest Dynamic Mass Virtual Hosting Server. Last time I used mod_vhost_alias to create a dynamic virtual hosting and it worked without any problem for what we need in that time. Then we didn’t care about the ftp and virtual users, the sites was updated from web pages and security was pretty much handled by upload application who managed the virtual hosting. Now, the problem is a little bit changed: We need a secure sever which should support ftp virtual users with quota ...]]> http://www.randombugs.com/php/apache-dynamic-virtual-hosting-php-security.html/feed 1 http://www.randombugs.com/linux/atomic-modsecurity-rules-debian-lenny-50.html http://www.randombugs.com/linux/atomic-modsecurity-rules-debian-lenny-50.html#comments Thu, 30 Dec 2010 11:26:26 +0000 admin http://www.randombugs.com/?p=666
Everyone, with a decent Linux security knowledge, should know about ModSecurity – Open Source Web Application Firewall. Personally, I know this mod from 2004 and it help me a lot in detecting and/or preventing malicious attacks before reaching my customers applications.]]> http://www.randombugs.com/linux/atomic-modsecurity-rules-debian-lenny-50.html/feed 0 http://www.randombugs.com/linux/compile-configure-modqos-prevent-slowloris-ddos-apache-2-debian-lenny-distribution.html http://www.randombugs.com/linux/compile-configure-modqos-prevent-slowloris-ddos-apache-2-debian-lenny-distribution.html#comments Tue, 04 May 2010 20:00:13 +0000 admin http://www.randombugs.com/?p=650
mod_qos is becoming a very popular module for Apache, from the discover of Slowloris DDoS Attack. It seems, mod_qos is the best solution for Slowloris attack on Apache 2, but you can also check mod_evasive, mod_security or http accelerator “Varnish”. In this post I will try to present a step by step tutorial how to install mod_qos and configure to prevent Slowloris DDoS attack. This post is just a compendium of other good posts: How To Defend slowloris DDoS With mod_qos (Apache2 On Debian [Lenny]) DDoS, Apache2 and mod_qos How to best defend ...]]> http://www.randombugs.com/linux/compile-configure-modqos-prevent-slowloris-ddos-apache-2-debian-lenny-distribution.html/feed 4 http://www.randombugs.com/java/glassfish/changing-logging-system-glassfish-21.html http://www.randombugs.com/java/glassfish/changing-logging-system-glassfish-21.html#comments Mon, 28 Sep 2009 18:04:20 +0000 admin http://www.randombugs.com/?p=606
A lot of people are not satisfied by the default Java Logging (JUL) in Glassfish. Also, myself I encountered some problems on clustered environments where we should have one single log and not one log for each instance. Trying to change the logging system in Glassfish it looks to be almost impossible , but I found a very interesting project java.util.logging to log4j Bridge and the sky become more clear for Glassfish logging. Jul to Log4J Bridge are part of log4J project and is very useful when you ...]]> http://www.randombugs.com/java/glassfish/changing-logging-system-glassfish-21.html/feed 0 http://www.randombugs.com/java/dbappender-log4j-12.html http://www.randombugs.com/java/dbappender-log4j-12.html#comments Thu, 24 Sep 2009 20:19:46 +0000 admin http://www.randombugs.com/?p=595
Initially, DBAppender for Log4j was introduced in version 1.3 of Log4j, but this version was ABANDONED by Apache team. DBAppender is very useful when we want to send our log on a JNDI resource and not on standard JDBC or file. If you need just logging in a database for your application, then you should use JDBCAppender. If you want to log on a JNDI or Database Connection Pool the DBAppender is for you. In this post I will show you how to get, compile and quick test the DBAppender. 1. ...]]> http://www.randombugs.com/java/dbappender-log4j-12.html/feed 6 http://www.randombugs.com/tuning/compile-install-run-modlimitipconn-apache2-debian.html http://www.randombugs.com/tuning/compile-install-run-modlimitipconn-apache2-debian.html#comments Mon, 22 Jun 2009 17:17:48 +0000 admin http://www.randombugs.com/?p=509
Limiting abusers from running 20 download threads from the same Apache server is easy now with mod_limitipconn. But the apache 2 module, mod_limitipconn, is not available under the latest Debian distribution, Lenny. In this mini how-to I will show you how-to manage this module to work for Debian Lenny users. The compile process of mod_limitipconn is a little bit more than “make install”. First install apache prefork development utilities (we need apxs2 to compile our module) [rb@randombugs]# apt-get install apache2-prefork-dev After that, download source code of iplimit module from http://dominia.org/djao/limitipconn2.html and unpack it [rb@randombugs]# ...]]> http://www.randombugs.com/tuning/compile-install-run-modlimitipconn-apache2-debian.html/feed 3 http://www.randombugs.com/linux/creating-and-installing-a-certificate-on-apache-2.html http://www.randombugs.com/linux/creating-and-installing-a-certificate-on-apache-2.html#comments Wed, 12 Nov 2008 13:33:08 +0000 admin http://www.randombugs.com/?p=58
Generating and installing a certificate Is not such a big deal as other may consider but it requires some understanding of how apache and certificates are working. This post will be structured in 3 parts: Generating a private key for the apache server Generating a Certificate Signing Request (CSR) Configuring Apache 2 SSL Generating a private key for the server To generate a private key for our server we need OpenSSL utilities. To install it just run: apt-get install openssl To generate a private key run in console: openssl genrsa –des3 –out www.mydomain.com.key 1024 If you are not ...]]> http://www.randombugs.com/linux/creating-and-installing-a-certificate-on-apache-2.html/feed 0