d

apache

• This category contains 47 Papers
• The last paper was added on 2007-03-26 (YYYY-MM-DD)

Accelerating IPv6 adoption with Apache proxy server

Published on 2004, by Jeff Garzik, ©Jeff Garzik.

Although I've been a fan of IPv6 for a while, only in the past few weeks have I been using it full-time on my home network and my web sites. Trivial setup on Fedora Core 2 made roll-out of IPv6 on my tiny network a breeze. This was Linux's big step, in my own mind, into IPv6 production readiness.

Adding PHP to Apache on Linux

Published on 1999, by Ken Coar, ©Ken Coar.

The technology that supports the Web continues to evolve, and one of the latest mutations involves capitalising on its very user-driven interactivity. The days of all-static content are past; the Web has evolved to a point at which many sites actually remember personal preferences for each of their (potentially millions) of visitors. News sites can display stories in only those categories you find interesting; online music stores can provide you with listings of new works sorted in order by your favourite artists; Web search engines can implicitly restrict the types of content they'll display. The possiilities are endless, and the key is generating a unique presentation for each viewer.

Advanced Logging Techniques With Apache

Published on 2004-07-02, by Martin Brown, ©Jupitermedia Corporation.

Many people will take their logs and, using various techniques, reformat the information into a more useful layout. There are a lots of ways of doing this, and a number of tools, like analog, simplify the process.

Amble Through Apache Configuration

Published on 2000-02-03, by Rael Dornfest, ©O'Reilly Media, Inc..

The next attraction on our Apache tour is an amble through httpd.conf, the web server's main configuration file.

Apache 2 with SSL/TLS: Step-by-Step, Part 1

Published on 2005-01-18, by Artur Maj, ©SecurityFocus.

For more than 10 years the SSL protocol has been widely used for the purpose of securing web transactions over the Internet. One can only guess how many millions or billions of dollars in transactions are processed per a day using SSL. Unfortunately, the simple fact we use SSL does not necessarily mean that the information sent over this protocol is secure. The use of weak encryption, the impossibility of verifying web servers' certificates, security vulnerabilities in web servers or the SSL libraries, as well as other attacks, may each let intruders access sensitive information -- regardless of the fact that it is being sent through the SSL.

Apache 2 with SSL/TLS: Step-by-Step, Part 2

Published on 2005-02-02, by Artur Maj, ©SecurityFocus.

In the first article of this three part series, the reader was shown how to install, configure, and troubleshoot Apache 2.0 with SSL/TLS support. Part two now discusses the recommended settings for the mod_ssl module that lets us achieve maximum security and optimal performance. The reader will also see how to create a local Certification Authority and a SSL certificate based on the free and open-source OpenSSL library.

Apache 2.0 Installation Guide

Published on 2002, by Ryan Spangler, ©Ryan Spangler.

The Apache Web server is arguably the most popular Web server in use on the Internet today. Here are some of the reasons why Apache is so popular; you don’t have to be running Windows to run Apache. It was developed on various Unix/Linux/BSD platforms, and then recently ported to Win32. Internet Information Server, a Web server made by Microsoft for the Windows NT platform, is made for use in the "Windows-only" world. While IIS has many features, it’s lack of portability limits it’s market share.

Another reason for Apache’s widespread acceptance is its overall stability. While you can slow down an Apache Web server, you can rarely, if ever, kill one. The Apache Web server service is near bulletproof.

Lastly, it’s relatively fast. I say "relatively" as it’s relative to what you’re doing with it. If you’re hosting a pretty plain Web site with mostly static content, Apache is a fireball. If you throw tons of CGI scripts at it, while making database calls at the same time, you’re going to slow it down. Though much of the slowdown will come from your scripts themselves, and not from Apache.

Apache based WebDAV Server with LDAP and SSL

Published on 2003-07-27, by Saqib Ali, ©Saqib Ali.

The Objective of this document in to Setup a Apache + mySQL + PHP + WebDAV based Web Application Server, that uses LDAP for Authentication. The documentation will also provide details on the encrypting LDAP transactions.

Apache Basics

Published on 2004-02-06, by Russell J.T. Dyer, ©CMP Media LLC.

The most popular Web service application is the Apache server — it's free and open source, and it's multi-platformed (working on MS Windows and every incarnation of Unix and Linux). Apache runs primarily off one configuration text file and is highly configurable. However, some configuration possibilities can be tricky, and some options are unknown to many would-be Apache systems administrators. In this new Apache series, I will cover how to configure the Apache server for various common and specialized needs, and also discuss how to adjust Apache for better performance.

Apache chrooting made simple

Published on 2004, by Ivan Ristic, ©Ivan Ristic.

Starting with v1.6 mod_security includes support for Apache chrooting. Chrooting is a process of confining an application into a special part of the file system, sometimes called the "jail". Once the chroot call is performed, the application can no longer access what lies outside the jail. Only the root user can escape the jail, and a vital part of the chrooting process is not allowing anything root related (root processes or suid root binaries) inside the jail. The idea is that if an attacker manages to break in through the web server he won't have much to do because he, too, will be in jail, with no means to escape.

Apache Compile HOWTO

Published on 2003-02-09, by Luc de Louw, ©Luc de Louw.

This document describes howto compile the Apache Webserver with the most important modules like mod_perl, mod_dav, mod_auth_ldap, mod_dynvhost, mod_roaming, mod_jserv, and mod_php

Apache Compile HOWTO

Published on 2003-02-09, by Luc de Louw, ©Luc de Louw.

This document describes howto compile the Apache Webserver with the most important modules like mod_perl, mod_dav, mod_auth_ldap, mod_dynvhost, mod_roaming, mod_jserv, and mod_php

Apache failover with heartbeat and mon

Published on 2003-02-05, by Thomas Olausson, ©Thomas Olausson.

Welcome to this mini howto on how to install a two node Apache failover using heartbeat and mon. This is probably the base setup you want to start with. I'll cover a base Linux installation, but it's mostly the same on other UNIX distributions. I've left out areas such as NFS mounted web roots and IP based heartbeat, for simplicity.

Apache Maintenance Basics

Published on 2004-05-13, by Martin Brown, ©Jupitermedia Corporation.

You've downloaded and configured your Apache server and are ready to move on to the next project. Can it really be left to fend for itself in a darkened room?

Apache Overview HOWTO

Published on 2002-10-10, by Daniel Lopez Ridruejo, ©Daniel Lopez Ridruejo.

This document gives you an overview of the different Apache projects, such as the Apache HTTP server and the Tomcat Servlet and JSP engine. It provides pointers for further information and implementation details.

Apache Overview HOWTO

Published on 2002-10-10, by Daniel Lopez Ridruejo, ©Daniel Lopez Ridruejo.

This document gives you an overview of the Apache world, including Apache Software Foundation projects such as the Apache web server and commercial and open source third party software. Apache is the most popular server on the Internet. New Apache users, especially those coming from a Windows background, are often unaware of the possibilities of Apache, its useful addons and, more in general, how everything works together. This document aims to show a general picture of such possibilities with a brief description of each one and pointers for further information. The information has been gathered from many sources, including projects' web pages, conference talks, mailing lists, Apache websites and my own hands-on experience. Full credit is given to these authors. Without them and their work, this document would not have been possible or necessary.

Apache Performance Notes

Published on , by Dean Gaudet, ©Apache Software Foundation.

Apache is a general webserver, which is designed to be correct first, and fast second. Even so, its performance is quite satisfactory. Most sites have less than 10Mbits of outgoing bandwidth, which Apache can fill using only a low end Pentium-based webserver. In practice, sites with more bandwidth require more than one machine to fill the bandwidth due to other constraints (such as CGI or database transaction overhead). For these reasons, the development focus has been mostly on correctness and configurability.

Apache SSL PHP/FI frontpage mini-HOWTO

Published on 1998-07-01, by Marcus Faure, ©Marcus Faure.

This document is about building a multipurpose webserver that will support dynamic web content via the PHP/FI scripting language, secure transmission of data based on Netscape's SSL, secure execution of CGI's and M$ Frontpage Server Extensions

Apache Web-Serving with Mac OS X: Part 1

Published on 2001-07-12, by Kevin Hemenway, ©O'Reilly Media, Inc..

Editor's note: Most people know that Mac OS X ships with a built-in Apache web server, but don't realize that it's easy to configure and run. In fact, you can host a web site in minutes after completing just a few simple steps.

But that doesn't mean that Mac OS X is a lightweight in this category. It's not. In fact, you can drill down and get very serious with this state-of-the-art serving software.

In this first installment of a multi-part series, Kevin Hemenway shows you how to start serving web pages directly from your Mac. In the articles that follow, he'll show you the techniques that system administrators use for maintaing robust web sites. As you read Kevin's tutorials, you'll learn the functions of some of those mysterious folders deep within your Mac OS X hard drive, and will soon become your own "X" Sys Admin.

You stare at the screen, fingers twitching nervously. You've been telling the rest of the world how great Mac OS X is, basking in the sheer enjoyment of upgrading your Classic applications to jelly-powered delights. After much spouting, your boss has finally given you a chance to prove your saliva-laced rantings. The task is quite simple: "build the GatesMcFarlaneCo [1] intranet with features up the wazoo."

Once again, it's time to convince the herd about Mac superiority. What better way to begin than to use a well-respected web server that's proven its mettle time and time again?

Apache Web-Serving with Mac OS X: Part 1

Published on 2001-07-12, by Kevin Hemenway, ©O'Reilly Media, Inc..

Apache is regarded as the most popular web server available today. With its incredible portability and support for anything you'd ever want to do, Apple wisely decided to ship Apache with its Unix-based operating system. With this web-serving powerhouse at your fingertips, I'll explain how you can impress your boss and solidify your love for Mac OS X™, all at the same time.

Apache-mod_ssl-PHP-Howto

Published on 2004-02-22, by Falko Timme, ©Falko Timme.

This document describes how to install an Apache web server (1.3.x) with mod_ssl and PHP enabled. This howto is meant as a practical guide; it does not cover the theoretical backgrounds. They are treated in a lot of other documents in the web. This document comes without warranty of any kind!

Better Living Through Mod Security

Published on 2004, by Dhillon A. K., ©Dhillon A. K..

We've all heard of web application level firewalls, and they're certainly not something new, with several good commercial offerings available for quite some time. Most of these products will offer some kind of web based administration and reporting facilities to allow simple and straight forward management.

On the open source end of the scale we have a project named ModSecurity. According to the Mod Security website (http://www.modsecurity.org), ModSecurity is an open source intrusion detection and prevention engine for web applications. Operating as an Apache Web server module, the purpose of ModSecurity is to increase web application security, protecting web applications from known and unknown attacks.

Chrooting Apache and PHP in BSD Howto

Published on 2004-02-12, by soup4you2, ©soup4you2.

Chrooting has been around for a long time now. Chrooting makes a program believe that the root of the file system is higher up in the hierarchy. For example, if I wanted to create a chroot in /chroot/httpd, a program executed from within the chroot would believe that "/chroot/httpd" was actually "/". There in lies the beauty as the program can’t reach any files out side "/chroot/httpd". Security of the server as a whole is increased due to the fact that the system binaries are off limits. In addition, chroots usually only have the bare minimum files inside, so exploits have a harder time breaking in.

Defending Web Services using Mod Security (Apache)

Published on 2005-01-19, by Shreeraj Shah, ©Infosecwriters.com.

Web services are vulnerable to several attacks. These attacks can lead to information leakage and further aid in remote command execution. By using WSDL an attacker can determine an access point and available interfaces for web services. These interfaces or methods take inputs using SOAP over HTTP/HTTPS. If these inputs are not defended well at the source code level, they can be compromised and exploited. ModSecurity operates as an Apache Web server module, ideal for defending web services against attacks that also include malicious POST variable content. This paper describes techniques to defend your web services layer using mod_security.

Getting Started with Apache 1.3

Published on 2000, by Ken Coar, ©Ken Coar.

Hopefully you know something about Web servers in general, and the Apache Web server in particular, or else you wouldn't be reading this page. This article isn't intended to give background on what Apache is nor why you should use it, but how to get going with it once the decision has been made. In other words, simply how to download it, and install it, and turn it on.

Getting, Installing, and Running Apache

Published on 2000-02-25, by Rael Dornfest, ©O'Reilly Media, Inc..

There are about as many ways to build and install Apache as there are reasons to run a web server. As it's our first time out, we'll take the road most traveled and leave the advanced configurations for later columns.

Hardening HTAccess, Part 1

Published on 2006-07-11, by Robert Hansen, ©SecurityFocus.

Htaccess can be used to manage multiple usernames/passwords, thereby enhancing information protection on the web server by controlling access through HTTP protocols. When used in conjunction with a browser encryption method such as SSL, it is possible to make htaccess authentication a robust method of protecting directories. However, out of the box, htaccess is prone to several problems, namely: packet-sniffing, IP hijacking, replay attacks, and brute force. Cryptography, (SSL and one-time pads) can solve all but one of these problems - brute forcing.

Hardening HTAccess, Part 2

Published on 2006-08-31, by Robert Hansen, ©SecurityFocus.

This article is the second in a three-part series that will provide a way to harden htaccess to make it more stable and lessen the chances of successful brute force attacks. The first installment offered a brief overview of htaccess, along with a look at a couple of hacking tools and methodologies to which htaccess is particularly susceptible. We particularly covered ways in which wwwhack can be used to infiltrate htaccess. In this article, we will explore a couple of ways of foiling wwwhack, namely headers masking and content masking.

Hardening HTAccess, Part 3

Published on 2001-08-06, by Robert Hansen, ©SecurityFocus.

This is the third and final installment in a series devoted to hardening htaccess to make it more stable and lessen the chances of successful brute force attacks. The first installment offered a brief overview of htaccess, along with a look at a couple of hacking tools and methodologies to which htaccess is particularly susceptible. We particularly covered ways in which wwwhack can be used to infiltrate htaccess. In the second article, we explored a couple of ways of foiling wwwhack, namely headers masking and content masking. This installment will look at a few more issues involved with hardening htaccess.

High-availability middleware on Linux, Part 1: Heartbeat and Apache Web server

Published on 2004-10-12, by Hidayatullah Shaikh, ©IBM.

description

Installing Apache, MySQL, and PHP on Linux

Published on 2003-11-18, by Rick Nicholas, ©Rick Nicholas.

This tutorial is designed to guide you through the initial steps of setting up Apache, MySQL, and PHP on Linux. The Linux distribution being utilized for this tutorial is Fedora Core 1, however the steps should be very similar across most distributions. This tutorial makes the assumption that you have the required development tools loaded for compiling programs from source, these tools are beyond the scope of this document and will not be covered here. Also, it assumes you can use the vi text editor for basic editing tasks.

Introducing LAMP Tuning Techniques

Published on 2004-05-02, by Adam Pedersen, ©O'Reilly Media, Inc..

I'm getting to know far more about servers than I ever wanted to, after hundreds of hours of Google research trying to squeeze/beat performance out of Apache. I do have 15 years programming experience in other areas, and I've reached the conclusion that the only experts in Apache/Linux are the programmers who wrote (and poorly documented) all this stuff. So I've gathered everything I could learn after countless hours of frustration and I'm writing this up in return for the immense amount of help I've received from the documentation of others.

Introducing mod_security

Published on 2003-11-23, by Ivan Ristic, ©O’Reilly Media, Inc..

Running public web applications may seem like playing Russian roulette. Although achieving robust security on the Web is possible in theory, there's always a weak link in real life. It only takes one slip of the code to allow attackers unrestricted access to your data. If you have a public web application of modest complexity running, chances are good that is has some kind of security problem.

Modifying the Server header in Apache 2.0 and 1.3

Published on 2004-09-23, by Rich Bowen, ©O'Reilly Media, Inc..

Rich Bowen tackles an Apache security issue in this latest column based on his conversations on the IRC channel #apache. This month he covers how to get Apache to send a different Server response so that no one can identify what version of Apache you're running, or any of the modules you have installed. The less information your server reveals, the safer it will be from crackers who want to try and break in. Rich is a coauthor of O'Reilly's Apache Cookbook.

Optimizing the Solaris Network Cache and Accelerator for the Apache Web Server

Published on 2004, by Edgar Correcher Alcocer, ©Sun Microsystems, Inc..

This Tech Tip offers an optimized configuration for dedicated web servers running the Apache HTTP Server and the Solaris Operating System. This document is a brief how-to for using the Solaris Network Cache and Accelerator (SNCA).

Preventing Image 'Theft'

Published on 2000, by Ken Coar, ©Ken Coar.

Webmasters are ever searching for ways to make their sites look cool and attractive. One way is to dress it up with images, logos, and other graphics # sometimes referred to as 'eye candy.' Of course, if you happen to be in the forefront of this in any way, you run the risk of having others cadge your art in order to dress up their sites. And they probably won't even ask permission nor pay you a royalty, either.

Red Hat Content Accelerator

Published on 2002, by Red Hat, Inc., ©Red Hat, Inc..

Red Hat Content Accelerator is a kernel-based Web server licensed under the GNU General Public License (GPL). It is currently limited to serving static webpages and coordinating with kernel-space modules, userspace modules, and regular user-spaceWeb server daemons to provide dynamic content. Regular userspace Web servers do not need to be altered in any way for Red Hat Content Accelerator to coordinate with them. However, user-space code has to use a new interface based on the tux(2) system call.

Securing A Website With Client SSL

Published on 2006-09-06, by SecurityMonkey, ©Information Technology Toolbox, Inc. .

Let’s assume that you have an Apache webserver and a website that you want VERY finite access controls on. You could do it a number of ways, right?

You could craft a clever login page and use cookies, session IDs, etc.

You could use a simple authentication method like .htaccess.

Or, you could create a custom SSL certificate and give that certificate to very specific users that should have access to your site. In a perfect world, only these users could communicate with your site AND the connection would be secured via the magic of SSL.

Securing Apache 2: Step-by-Step

Published on 2004-06-21, by Artur Maj, ©SecurityFocus.

When choosing a web server, Apache very often wins against its competitors because of stability, performance, that fact that it's open source, and many other advantages. But when deciding on which version of Apache to use, the choice is not always so simple. On the one hand there is a very popular, stable version used by millions of users, version 1.3, and on the other hand, there is an enhanced and re-designed version 2.0.

Securing Apache: Step-by-Step

Published on 2003-05-03, by Artur Maj, ©SecurityFocus.

This article shows in a step-by-step fashion, how to install and configure the Apache 1.3.x Web server in order to mitigate or avoid successful break-in when new vulnerabilities in this software are found.

Securing Your Web Pages with Apache

Published on 2000, by Ken Coar, ©Ken Coar.

Chances are that your Web site has at least a few pages that you really don't want published to the Internet at large. How do you keep the Black Hats from seeing them, whilst not impeding the access of the White Hats that need the pages?

Tuning Apache and PHP for Speed on Unix

Published on 18, 2001, by John Lim, ©John Lim.

Here is my compilation of tips on how to optimise Apache on Linux for PHP and CGI programs. These tips can also apply to Perl and Python. Links will open in a new window.

Using .htaccess Files with Apache

Published on 2000, by Ken Coar, ©Ken Coar.

One of the most common needs Webmasters have is to cause the Web server to handle all the documents in a particular directory, or tree of directories, in the same way # such as requiring a password before granting access to any file in the directory, or allowing (or disallowing) directory listings. However, this need often extends to more than just the Webmaster; consider students on a departmental Web server at a university, or individual customers of an ISP, or clients of a Web-hosting company. This article describes how the Webmaster can extend permission to tailor Apache's behaviour to users, allowing them to have some control over how it handles their own sub-areas of its total Web-space.

Using Apache with suexec on Linux

Published on 2000, by Ken Coar, ©Ken Coar.

The Apache Web server, like most if not all of the others in common use today, lets you execute arbitrarily complex operations through the use of CGI scripts. These can involve database lookups, system administration functions, real-time control of machinery, online payments, or almost anything else of which you can think.

Using the Apache CVS Repository

Published on 2000, by Ken Coar, ©Ken Coar.

The Apache HTTP Server project (which is usually what's meant when the term 'Apache' is used generically) keeps all of its source files in a central CVS source code repository. As changes are made, they are applied to this master repository; when a release is built, it is assembled from the same repository. But suppose you want to keep up with the latest and greatest Apache developments (and bugs), without having to wait for a release? How would you do it? That's what this article is all about.

Using User Authentication

Published on 1996-10-18, by Apache Week, ©Apache Week.

There are two ways of restricting access to documents: either by the hostname of the browser being used, or by asking for a username and password. The former can be used to, for example, restrict documents to use within a company. However if the people who are allowed to access the documents are widely dispersed, or the server administrator needs to be able to control access on an individual basis, it is possible to require a username and password before being allowed access to a document. This is called user authentication.

Web Security Appliance With Apache and mod_security

Published on 2003-10-21, by Ivan Ristic, ©SecurityFocus.

As more and more attacks are being carried out over the HTTP layer there is a growing need to push the envelope and bring Web security to new levels. Most existing tools work on the TCP/IP level, failing to use the specifics of the HTTP protocol in their operation. The need for increased security has lead to the creation of application gateways, tools that are essentially reverse proxies with the added capability of protocol analysis. Many commercial solutions are available. This article will demonstrate how you can build your own application gateway with little effort, using open source components that are widely available.