On a cpanel server, i need to run a web application using docker container. Application running side docker container listening on port 8000 on localhost. For a web site to serve traffic from this docker container, we can use Apache mod_proxy, this is enabled by default on cpanel servers. https://httpd.apache.org/docs/2.4/howto/reverse_proxy.html You can verify it at […]
A web site had vlunerability, all allowed hacker to upload backdoor script to “uploads” folder used by the script. As a quick fix, i disabled PHP execution from “uploads” folder. Doing this for any site is a good dea when if your site is not vlunerable at the moment. Method 1 To disable PHP execution, […]
ab is a tool for benchmarking web servers. It is designed to give you an impression of how your web server installation performs. This especially shows you how many requests per second your web server is capable of serving. http://httpd.apache.org/docs/2.4/programs/ab.html To benchmark a web site, use ab command provided by Apache.
|
1 |
ab -c 200 -n 15000 http://site-to-benchmark-here.com/ |
This will start […]
To limit access to a folder using .htaccess, create .htacess file with following content.
|
1 2 3 |
order deny,allow deny from all allow from YOUR_IP_HERE |
YOUR_IP_HERE = Replace it with your actual IP. You can white list IP range by entering CIDR notation for the IP range. Here is .htacess i use on one of my web sites admin folder.
|
1 2 3 4 |
order deny,allow deny from all allow from 137.97.0.0/16 allow from 116.68.64.0/18 |
If your server is […]
When apache is running behing proxy server it shows IP of proxy server as visitor IP. To fix this, you need to enable Apache module remoteip. https://httpd.apache.org/docs/2.4/mod/mod_remoteip.html On Ubuntu/Debian, this can be enabled with command
|
1 |
a2enmod remoteip |
Now create file
|
1 |
vi /etc/apache2/conf-available/remoteip.conf |
Add
|
1 2 3 |
RemoteIPHeader X-Forwarded-For RemoteIPTrustedProxy IP_OF_YOUR_PROXY_SERVER_HERE X-Forwarded-For |
IP_OF_YOUR_PROXY_SERVER_HERE = repace with your proxy server. This can be any proxy server […]
To disable PHP for a web site edit VirtualHost entry of the web site and add
|
1 |
php_flag engine off |
Restart Apache
|
1 |
systemctl restart apache2 |
Apache […]
On Ubuntu, to execute .htm files as PHP, create file
|
1 |
vi /etc/apache2/conf-enabled/php-htm.conf |
Add following content
|
1 2 3 |
<FilesMatch ".+\.htm$"> SetHandler application/x-httpd-php </FilesMatch> |
This is similar code from your PHP configuration. In this case, it is from /etc/apache2/mods-available/php5.6.conf Now restart apache
|
1 |
service apache2 restart |
Apache | PHP […]
On a new Debian server with Apache, web site give 500 internal server error. On checking error log, i found [Thu Jan 04 06:44:42.483932 2018] [core:alert] [pid 27583] [client 112.133.248.19:63020] /home/user/public_html/.htaccess: Invalid command ‘Header’, perhaps misspelled or defined by a module not included in the server configuration The error is due to Apache headers module […]
htpasswd apachectl Apache SSL Apache PHP-FPM Run .htm files as PHP in Apache Apache Disable PHP for a web site Apache Benchmark Ubuntu Apache Setup for WordPress Apache Limit access to a url Nginx vs Apache Apache Performance Tuning Apache LogFormat show full domain name Change Apache User in Ubuntu Apache disable directory index Apache […]
Redirect OLD site to NEW using htaccess Limit Access Using htaccess Apache Limit access to a url Disable PHP on a folder How to protect .git folder using htaccess Redirect site from www to non-www Password Protect Site using htaccess Redirect domain to SSL (HTTPS)
|
1 2 3 |
RewriteEngine On RewriteCond %{SERVER_PORT} 80 RewriteRule ^(.*)$ https://www.yourdomain.com/$1 [R,L] |
Or
|
1 2 3 |
RewriteEngine On RewriteCond %{HTTPS} off RewriteRule (.*) https://%{HTTP_HOST}%{REQUEST_URI} [R,L] |
Redirect a Page to another
|
1 |
RedirectMatch 301 ^/old-page\.php$ /new-page.php |
You […]