Tag Archives: Apache

Using MTM ITK for Apache

I needed to secure websites on a FreeBSD server to stop ‘cross site contamination’, i.e. stopping virtualhost #1 modifying/reading data within virtualhost #2. In FreeBSD the solution (or at least one solution) appears to be apache22-itk-mpm. Step 1. Install the port … Continue reading

Posted in Apache, FreeBSD Administration | Tagged , , | Leave a comment

OpenSSL Creating a CSR with Additional names

As part of the new bailout project here at Gconnect, I needed an SSL cert with an additional domain in it. the first is the name of the server, the second is the name of the cluster. In order to … Continue reading

Posted in FreeBSD Administration | Tagged , , , , | Leave a comment

Quick MySQL backups

As a hosting provider we are often asked to provide a backup or dump of a mysql database. The easiest way to do it is to performa MySQLdump into a file into the webspace and the secure it with file … Continue reading

Posted in Apache, FreeBSD Administration, MySQL | Tagged , , , | Leave a comment

ModSecure – exempting a domain

Having installed modSecure2 onto a few web servers, it seems that, even with the base_rules do not get on well with Actinic software. Our options were to start removing rules from within the base_rules set or simply exclude the domain … Continue reading

Posted in Apache, FreeBSD Administration | Tagged , , , | Leave a comment

Apache and mod_secure2 (Modsecure)

There comes a time when preaching and asking nicely about securing websites on a community server is finished.  I was looking for a global method of restricting what was uploaded to the server when I came across mod_secure. This Apache … Continue reading

Posted in Apache, FreeBSD Administration | Tagged , , , | Leave a comment

FreeBSD Jails

I’m thinking of offering FreeBSD jailed Apache servers as a middle ground between community hosting and dedicated servers. First step is to create my test of how it will work. Using my trusty HP MicroServer, I’ve installed a new(ish) disk … Continue reading

Posted in FreeBSD Administration | Tagged , , , | Leave a comment

Using .htaccess to Secure a Website

As promised, here are some .htaccess examples to help secure your web site. First off is preventing .php or other scripts from being run from within an ‘upload’ folder in the web space. You would expect images and in some … Continue reading

Posted in Apache, FreeBSD Administration | Tagged , , , | Leave a comment

File permissions for web developers

Here at the $dayjob we are often asked about file permissions by our customers who are developing websites. The main issues seem to be when a CMS system like Joomla or WordPress is being used, however these notes are relevant … Continue reading

Posted in Apache, FreeBSD Administration | Tagged , , , | Leave a comment