When Apache web server running behind reverse proxy or load balancer, server log and scripts show IP of reverse proxy server or load balancer as IP of visitor. To fix this, you need to configure revese proxy or load balancer to forward Real IP of visitor on Header X-Forwarded-For, this most load balacner do by […]
apachectl command is used to interact with Apache web server. To see Apache status
|
1 |
apachectl status |
To list virtualhost info, run
|
1 |
apachectl -S |
To list loaded apache modules, run
|
1 |
apachectl -M |
Related Posts Apache Web Server apachectl status www-browser not found […]
mod ruid2 allow you to run web site as differnt user from the one web server is running. This is helpfull when you have multiple web sites on same Apache web server. To install mod_ruid2 on Ubuntu/Debian server, run
|
1 |
apt install libapache2-mod-ruid2 |
Edit VirtualHost entry for the web site, add
|
1 2 |
RMode config RUidGid USERNAME_HERE GROUP_HERE |
Restart Apache
|
1 |
systemctl restart apache2 |
Now website will […]
On CentOS 7 sevrer running apache, when try to install plugin in WordPress admin area, i get error
|
1 |
Installazione fallita: Il download non è andato a buon fine. cURL error 35: Process open FD table is full |
This is due to Apache File Descriptor Limits. To see current Limits, use following PHP script
|
1 2 3 4 5 |
<?php echo "User: " . exec('whoami'); echo "<br>FD Soft Limit: " . exec('ulimit -Sn'); echo "<br>FD Hard Limit: " . exec('ulimit -Hn'); |
To see system wide limits, use following commands
|
1 2 |
sysctl fs.file-nr sysctl fs.file-max |
Normally this will be high value. You need to increse […]
gunicorn is a python application server used to run python applications in production. This is normally run behind web servers like nginx or apache. To configre gunicorn behind apache, enable following apache modules.
|
1 |
a2enmod proxy proxy_ajp proxy_http rewrite deflate headers proxy_balancer proxy_connect proxy_html xml2enc |
Restart apache web server
|
1 |
systemctl restart apache2 |
For web site running pythin application, add a virtual host like following.
|
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 |
<VirtualHost *:80> ServerName DOMAIN_NAME ServerAdmin admin@serverok.in DocumentRoot "/home/flaskapp/myapp" ErrorLog ${APACHE_LOG_DIR}/flaskapp-error.log CustomLog ${APACHE_LOG_DIR}/flaskapp-access.log combined ProxyPass / http://127.0.0.1:5000/ ProxyPassReverse / "http://127.0.0.1:5000/" <Directory "/home/flaskapp/myapp/static/"> Order allow,deny Allow from all Options Indexes FollowSymLinks MultiViews Satisfy Any </Directory> </VirtualHost> |
[…]
On Plesk server, i get following error on error_log for a site
|
1 |
[Tue Apr 23 08:50:32.336220 2019] [core:alert] [pid 30457:tid 140337888573184] [client 86.243.163.203:44805] /var/www/html/.htaccess: Invalid command 'AuthGroupFile', perhaps misspelled or defined by a module not included in the server configuration |
This is because authz_groupfile apache module was not loaded. To load this, run
|
1 2 |
a2enmod authz_groupfile service apache2 restart |
To verify the module is loaded, run
|
1 2 3 4 5 6 7 8 9 10 |
root@root1313:~# apachectl -M | grep auth auth_basic_module (shared) auth_digest_module (shared) authn_core_module (shared) authn_file_module (shared) authz_core_module (shared) authz_groupfile_module (shared) authz_host_module (shared) authz_user_module (shared) root@root1313:~# |
[…]
I want to limit access to admin login url of a web application to specified IP address. The web site had admin login in following URL https://domain.com/login To limit IP address, i edited Apache VirtualHost configuration for this web site, added
|
1 2 3 4 5 6 |
<Location /login> Order deny,allow Deny from all Allow from 103.35.199.82 Allow from 51.38.246.115 </Location> |
Restart apache
|
1 |
systemctl restart httpd |
Or
|
1 |
systemctl restart apache2 |
Now only IP listed on the Allow from […]
On a Fresh Ubuntu 18.04 server, run following commands to setup Apache, PHP and MySQL needed for WordPress installation. You can go to each file and manually run the commands if you want to see what commands are executed.
|
1 2 3 4 5 6 |
wget https://raw.githubusercontent.com/serverok/server-setup/master/ubuntu/1-basic-tools.sh wget https://raw.githubusercontent.com/serverok/server-setup/master/ubuntu/2-apache-php-mysql.sh wget https://raw.githubusercontent.com/serverok/server-setup/master/install/update-php-ini.sh bash ./1-basic-tools.sh bash ./2-apache-php-mysql.sh bash ./update-php-ini.sh |
At this stage, you have LAMP server setup and ready to go. To get your […]
On a cpanel server, i need to run a web application using docker container. Application running side docker container listening on port 8000 on localhost. For a web site to serve traffic from this docker container, we can use Apache mod_proxy, this is enabled by default on cpanel servers. https://httpd.apache.org/docs/2.4/howto/reverse_proxy.html You can verify it at […]
A web site had vlunerability, all allowed hacker to upload backdoor script to “uploads” folder used by the script. As a quick fix, i disabled PHP execution from “uploads” folder. Doing this for any site is a good dea when if your site is not vlunerable at the moment. Method 1 To disable PHP execution, […]