Category: Apache – Page 3

Apache Invalid command AuthGroupFile

Posted on April 23, 2019 by ServerOk

On Plesk server, i get following error on error_log for a site

[Tue Apr 23 08:50:32.336220 2019] [core:alert] [pid 30457:tid 140337888573184] [client 86.243.163.203:44805] /var/www/html/.htaccess: Invalid command 'AuthGroupFile', perhaps misspelled or defined by a module not included in the server configuration

1	[Tue Apr 23 08:50:32.336220 2019] [core:alert] [pid 30457:tid 140337888573184] [client 86.243.163.203:44805] /var/www/html/.htaccess: Invalid command 'AuthGroupFile', perhaps misspelled or defined by a module not included in the server configuration

This is because authz_groupfile apache module was not loaded. To load this, run

a2enmod authz_groupfile
service apache2 restart

1 2	a2enmod authz_groupfile service apache2 restart

To verify the module is loaded, run

root@root1313:~#  apachectl -M | grep auth
 auth_basic_module (shared)
 auth_digest_module (shared)
 authn_core_module (shared)
 authn_file_module (shared)
 authz_core_module (shared)
 authz_groupfile_module (shared)
 authz_host_module (shared)
 authz_user_module (shared)
root@root1313:~#

root@root1313:~# apachectl -M | grep auth

auth_basic_module (shared)

auth_digest_module (shared)

authn_core_module (shared)

authn_file_module (shared)

authz_core_module (shared)

authz_groupfile_module (shared)

authz_host_module (shared)

authz_user_module (shared)

root@root1313:~#

[…]

Apache Limit access to a url

Posted on April 2, 2019 (April 2, 2019) by ServerOk

I want to limit access to admin login url of a web application to specified IP address. The web site had admin login in following URL https://domain.com/login To limit IP address, i edited Apache VirtualHost configuration for this web site, added

<Location /login>
    Order deny,allow
    Deny from all
    Allow from 103.35.199.82
    Allow from 51.38.246.115
</Location>

Order deny,allow

Deny from all

Allow from 103.35.199.82

Allow from 51.38.246.115

</Location>

Restart apache

systemctl restart httpd

1	systemctl restart httpd

systemctl restart apache2

1	systemctl restart apache2

Now only IP listed on the Allow from […]

Ubuntu Apache Setup for WordPress

Posted on March 8, 2019 (December 2, 2020) by ServerOk

On a Fresh Ubuntu 18.04 server, run following commands to setup Apache, PHP and MySQL needed for WordPress installation. You can go to each file and manually run the commands if you want to see what commands are executed.

wget https://raw.githubusercontent.com/serverok/server-setup/master/ubuntu/1-basic-tools.sh
wget https://raw.githubusercontent.com/serverok/server-setup/master/ubuntu/2-apache-php-mysql.sh
wget https://raw.githubusercontent.com/serverok/server-setup/master/install/update-php-ini.sh
bash ./1-basic-tools.sh
bash ./2-apache-php-mysql.sh
bash ./update-php-ini.sh

wget https://raw.githubusercontent.com/serverok/server-setup/master/ubuntu/1-basic-tools.sh

wget https://raw.githubusercontent.com/serverok/server-setup/master/ubuntu/2-apache-php-mysql.sh

wget https://raw.githubusercontent.com/serverok/server-setup/master/install/update-php-ini.sh

bash ./1-basic-tools.sh

bash ./2-apache-php-mysql.sh

bash ./update-php-ini.sh

At this stage, you have LAMP server setup and ready to go. To get your […]

Cpanel ReverseProxy Traffic to Docker Container

Posted on March 3, 2019 (March 3, 2019) by ServerOk

On a cpanel server, i need to run a web application using docker container. Application running side docker container listening on port 8000 on localhost. For a web site to serve traffic from this docker container, we can use Apache mod_proxy, this is enabled by default on cpanel servers. https://httpd.apache.org/docs/2.4/howto/reverse_proxy.html You can verify it at […]

Disable PHP on a folder

Posted on February 13, 2019 by ServerOk

A web site had vlunerability, all allowed hacker to upload backdoor script to “uploads” folder used by the script. As a quick fix, i disabled PHP execution from “uploads” folder. Doing this for any site is a good dea when if your site is not vlunerable at the moment. Method 1 To disable PHP execution, […]

Apache Benchmark

Posted on January 6, 2019 (July 20, 2019) by ServerOk

ab is a tool for benchmarking web servers. It is designed to give you an impression of how your web server installation performs. This especially shows you how many requests per second your web server is capable of serving. http://httpd.apache.org/docs/2.4/programs/ab.html To benchmark a web site, use ab command provided by Apache.

ab -c 200 -n 15000 http://site-to-benchmark-here.com/

1	ab -c 200 -n 15000 http://site-to-benchmark-here.com/

This will start […]

Limit Access Using htaccess

Posted on July 26, 2018 (December 2, 2018) by ServerOk

To limit access to a folder using .htaccess, create .htacess file with following content.

order deny,allow
deny from all
allow from YOUR_IP_HERE

order deny,allow

deny from all

allow from YOUR_IP_HERE

YOUR_IP_HERE = Replace it with your actual IP. You can white list IP range by entering CIDR notation for the IP range. Here is .htacess i use on one of my web sites admin folder.

order deny,allow
deny from all
allow from 137.97.0.0/16
allow from 116.68.64.0/18

order deny,allow

deny from all

allow from 137.97.0.0/16

allow from 116.68.64.0/18

If your server is […]

Show X-Forwarded-For IP in Apache

Posted on July 1, 2018 (June 27, 2019) by ServerOk

When apache is running behing proxy server it shows IP of proxy server as visitor IP. To fix this, you need to enable Apache module remoteip. https://httpd.apache.org/docs/2.4/mod/mod_remoteip.html On Ubuntu/Debian, this can be enabled with command

a2enmod remoteip

1	a2enmod remoteip

Now create file

vi /etc/apache2/conf-available/remoteip.conf

1	vi /etc/apache2/conf-available/remoteip.conf

Add

RemoteIPHeader X-Forwarded-For
RemoteIPTrustedProxy IP_OF_YOUR_PROXY_SERVER_HERE
X-Forwarded-For

RemoteIPHeader X-Forwarded-For

RemoteIPTrustedProxy IP_OF_YOUR_PROXY_SERVER_HERE

X-Forwarded-For

IP_OF_YOUR_PROXY_SERVER_HERE = repace with your proxy server. This can be any proxy server […]

Apache Disable PHP for a web site

Posted on May 8, 2018 by ServerOk

To disable PHP for a web site edit VirtualHost entry of the web site and add

php_flag engine off

1	php_flag engine off

Restart Apache

systemctl restart apache2

1	systemctl restart apache2

Apache […]

Run .htm files as PHP in Apache

Posted on March 31, 2018 by ServerOk

On Ubuntu, to execute .htm files as PHP, create file

vi /etc/apache2/conf-enabled/php-htm.conf

1	vi /etc/apache2/conf-enabled/php-htm.conf

Add following content

<FilesMatch ".+\.htm$">
    SetHandler application/x-httpd-php
</FilesMatch>

SetHandler application/x-httpd-php

</FilesMatch>

This is similar code from your PHP configuration. In this case, it is from /etc/apache2/mods-available/php5.6.conf Now restart apache

service apache2 restart

1	service apache2 restart

Apache | PHP […]