Hello,The following article shows how to set up OpenVPN with Nginx:
https://snikt.net/blog/2016/12/01/how-not-to-hide-openvpn-behind-https/ssl/
I want to use Apache for this. Is /etc/nginx/sites-enabled/default equivalent
to /etc/apache2/httpd.conf?
Thank you.
> From: Yann Ylavic
> Sent: Monday, December 11, 2023 5:45 AM
>
> On Mon, Dec 11, 2023 at 2:10 AM Jason Pyeron wrote:
> >
> > I thought I could
> >
> > httpd -t -DDUMP_CONFIG | grep -e KeepAlive
> > httpd -t -DDUMP_RUN_CFG | grep -e KeepAlive
> >
ues explicitly.
Respectfully,
Jason Pyeron
--
Jason Pyeron | Architect
PD Inc| Certified SBA 8(a)
10 w 24th St | Certified SBA HUBZone
Baltimore, MD | CAGE Code: 1WVR6
.mil: jason.j.pyeron@mail.mil
.com: jpye...@pdinc.us
tel : 202-741-9
bash needlessly
either product.
On Sat, Sep 30, 2023 at 3:09 AM Jason Long wrote:
Hello,
Thank you so much for your info.
Why are they trollish? I am curious to learn more.
Is there a fair comparison between Apache and Nginx?
On Saturday, September 30, 2023 at 10:35:12 AM GMT+3:30, Frank Gingras
3 at 12:26 PM, Deepak Goel wrote:
On Sat, 30 Sept 2023, 12:26 Jason Long, wrote:
Hello,
Is the following sentence correct?
"The way Apache loads PHP in its standard setup (with mod_php) compared to
Nginx alone puts it at a disadvantage. You will see performance gains,
particularly
hich leaves out very important
> details.
>
> On Sat, Sep 30, 2023 at 2:56 AM Jason Long
> wrote:
>> Hello,
>> Is the following sentence correct?
>> "The way Apache loads PHP in its standard setup (with mod_php) compared to
>> Nginx alone puts it at a disadva
Hello,
Is the following sentence correct?
"The way Apache loads PHP in its standard setup (with mod_php) compared to
Nginx alone puts it at a disadvantage. You will see performance gains,
particularly in memory usage, just by switching to Nginx, given you're using a
PHP-driven application."
Tha
system.
On Sun, Sep 24, 2023 at 1:56 PM Jason Long wrote:
Hello,If a vulnerability is found in the Apache web server, then does that
vulnerability work both in Apache under Linux and Windows operating systems?
Thank you.
Hello,If a vulnerability is found in the Apache web server, then does that
vulnerability work both in Apache under Linux and Windows operating systems?
Thank you.
apachectl -M to see the loaded
mpm.
On Fri, Sep 15, 2023 at 6:19 PM Jason Long wrote:
> Hello,
> What happens if I use both modules at the same time?
>
>
>
>>
>>
>> On Fri, Sep 15, 2023 at 3:08 PM, Daniel Ferradal
>> wrote:
>>
>>
>&
Hello,What happens if I use both modules at the same time?
On Fri, Sep 15, 2023 at 3:08 PM, Daniel Ferradal wrote:
El vie, 15 sept 2023 a las 13:36, Daniel Ferradal ()
escribió:
When I probably recommended MaxSpareThreads == to MaxRequestWorkers was due to
Apache httpd with third p
Hello,Thank you so much.Can you share an ideal Apache configuration file?
Something like a template.
On Fri, Sep 15, 2023 at 1:17 AM, Stormy wrote: On
2023-09-14 16:01, Jason Long wrote:
> Hello,
> Thanks again.
> How about the other parameters? For example, how can I estimate
at 5:45 PM Stormy wrote:
On 2023-09-14 16:01, Jason Long wrote:
> Hello,
> Thanks again.
> How about the other parameters? For example, how can I estimate the best
> value for "MaxRequestsPerChild", "ThreadsPerChild" and etc.?
What is wrong with the default values
est.
On Thu, Sep 14, 2023 at 2:47 PM Jason Long wrote:
Hello,Thanks again.So, I must remove the "mpm_prefork_module" section. Am I
right?
Can you show me an Apache configuration template for use with Wordpress?
When I must use "mpm_prefork_module"?
On Thu, Sep 14, 2023 at 4:2
the httpd processes, yes. The rest of the RAM will go towards
php and MySQL.
Since wordpress is involved, you'll want to use the event mpm (nor prefork, nor
event), proxy_fcgi and php-fpm. See:
https://cwiki.apache.org/confluence/display/HTTPD/PHP-FPM
On Thu, Sep 14, 2023 at 6:21 AM Jason
r dynamic language is involved, then the answer will depend on
what you use. You should also consider if other services use RAM, such as a
rdbms.
On Wed, Sep 13, 2023 at 8:52 AM Jason Long wrote:
Hello,
My server has 6 GB RAM and 4 virtual CPUs. I want to know How can I change the
following se
Hello,
My server has 6 GB RAM and 4 virtual CPUs. I want to know How can I change the
following settings for better performance?
Timeout 45
KeepAlive On
MaxKeepAliveRequests 100
KeepAliveTimeout 15
StartServers 3
MinSpareServers 3
MaxSpareServers 3
;t a useful test.
>
> On Thu, Jan 5, 2023 at 7:51 PM jason kerr wrote:
>
>> I have a wood pellet boiler that is connected via ethernet cable to my
>> home router. I can access the boiler to perform various functions whilst on
>> the local LAN but not externally. There is n
I have a wood pellet boiler that is connected via ethernet cable to my home
router. I can access the boiler to perform various functions whilst on the
local LAN but not externally. There is no way to password protect this page
so I didn't want to forward the ports and make it available for everyone
ss it is because the default, un-vhosted server now has
NO directory entries associated with it, that is has nothing to serve,
so vhost resolution is forced.
On 27/12/2021, Jason Vas Dias wrote:
> Thanks Eric -
>
> Yes, it was DocumentRoot, a typo in my email only - sorry .
>
>
s how to get them to serve the DocumentRoot and
Directory entries in their VirtualHost entries ?
Thanks & Best Regards,
Jason
On 27/12/2021, Eric Covener wrote:
>>
>> Directory "/opt/A"
>
> Did you mean DocumentRoot?
>
> Can you show the verbatim con
"apache" id=48
I'll try putting the default *:80 Apache sites in separate vhosts also.
Thanks & Best Regards,
Jason
On 27/12/2021, Eric Covener wrote:
>> I guess port based VirtualHosts are not supported ?
>
> It should work just fine and is how basic SSL co
ites, served by the
same IP address and hostname , but different ports.
Is this possible to acheive with ONE apache httpd instance ?
Thanks in advance for informative replies,
Best Regards & Seasons Greetings,
Jason
-
To un
Hello,
I set a password for my WordPress admin panel and its worked, but stopped
suddenly!
I opened “.htaccess” file and added below lines to it:
### BEGIN DIGEST BLOCK
AuthType Digest
AuthName "Protected by AskApache"
AuthDigestDomain /wp-login.php https://My_Web_Site.com/wp-login.php
AuthUser
Type the URL in the "Request Headers" and "Request Content" fields?
On Sunday, September 5, 2021, 06:52:50 PM GMT+4:30, Eric Covener
wrote:
On Sun, Sep 5, 2021 at 9:45 AM Jason Long wrote:
>
> Thanks.
> I found "https://www.test-cors.org/";
Thanks.
I found "https://www.test-cors.org/"; to test the CORS. How about the values of
the "Request Headers" and "Request Content" fields? Can you show me an example?
On Sunday, September 5, 2021, 05:02:15 PM GMT+4:30, Eric Covener
wrote:
On Sun, Sep
Hello,
I read
"https://ubiq.co/tech-blog/set-access-control-allow-origin-cors-headers-apache/#:~:text=CORS%20in%20Apache-,To%20set%20Access%2DControl%2DAllow%2DOrigin%20header%20in%20Apache,VirtualHost%3E%20sections%20of%20your%20file.&text=The%20above%20line%20will%20allow,requests%20from%20all%2
Hello,
Any idea?
On Sunday, August 29, 2021, 07:13:07 PM GMT+4:30, Jason Long
wrote:
Hello,
I scanned my website with the Acunetix tool and below vulnerabilities found:
1- Cookie(s) without HttpOnly flag set
2- Disable OPTIONS Method
3- CORS (Cross-Origin Resource Sharing) origin
Hello,
I scanned my website with the Acunetix tool and below vulnerabilities found:
1- Cookie(s) without HttpOnly flag set
2- Disable OPTIONS Method
3- CORS (Cross-Origin Resource Sharing) origin validation failure
To solve these problems, I added below lines to my Virtual Host configuration
fil
Hello,
Is proxy to proxy improving the security? For example:
The Internet --> Reverse Proxy Server --> Reverse Proxy Server --> Web Site
Thank you.
-
To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org
For additional com
I do not understand how this scam works, but it made me laugh. My daddy is
going to sue you if I don’t get my pony…
I needed that. SIGH.
From:SPAM
Sent: Friday, April 30, 2021 6:37 PM
Subject: [users@httpd] School Project cancelled
Dear Sir/Mme,
My name is Emily I am 14 years old f
ichael
Am 19.04.21 um 19:06 schrieb o1bigtenor:
> On Mon, Apr 19, 2021 at 10:20 AM Michael Wechner
> wrote:
>> Hi Jason
>>
>> The reverse proxy entries should look something like
>>
>>
> (I'm not the OP - - - but - - - - )
>
> Thank you - - -
rking examples on-line.
On Mon, Apr 19, 2021 at 2:14 PM Jason Long wrote:
> Thank you Michael.
> I changed my Virtual Host config file as below:
>
>
> ServerName 192.168.56.9
> ErrorLog ${APACHE_LOG_DIR}/error_log
> CustomLog ${APACHE_LOG_DIR}/access_log combined
>
.56.9). Which part of my configuration is wrong?
On Monday, April 19, 2021, 09:36:59 PM GMT+4:30, o1bigtenor
wrote:
On Mon, Apr 19, 2021 at 10:20 AM Michael Wechner
wrote:
>
> Hi Jason
>
> The reverse proxy entries should look something like
>
>
(I'm not the OP -
int.com/wp-content/uploads/2020/05/SSL-Certificate-Warning.png";
error too.
On Monday, April 19, 2021, 03:18:25 PM GMT+4:30, Nick Folino
wrote:
http://httpd.apache.org/docs/2.4/ssl/
Nick
On Mon, Apr 19, 2021 at 6:37 AM Jason Long wrote:
> Thank you.
> On my Apache Reverse Pro
?
On Monday, April 19, 2021, 02:48:24 PM GMT+4:30, Michael Wechner
wrote:
Hi Jason
Definitely "Apache Reverse Proxy (Public IP)", whereas you could use for
example
https://letsencrypt.org/
https://certbot.eff.org/
Depending on how your connection between "Apache Rever
Hello,
In below diagram, which server must use HTTPS certification?
The Internet ---> Apache Reverse Proxy (Public IP) ---> Web Site (Internal IP)
Thank you.
-
To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org
For addi
Sure.
Thank you.
On Wednesday, March 17, 2021, 08:26:40 PM GMT+3:30, Antony Stone
wrote:
On Wednesday 17 March 2021 at 17:44:07, Jason Long wrote:
> No, it is not home work.
What Eric means is that you should start trying to solve some of these
problems on your own, and not
t to properly server. Right?
On Wednesday, March 17, 2021, 08:17:29 PM GMT+3:30, Antony Stone
wrote:
On Wednesday 17 March 2021 at 17:33:46, Jason Long wrote:
> The load balancing is different. It is kind of HA.
Yes.
> When my real server is down then Apache forward requests
On Wednesday, March 17, 2021, 08:11:51 PM GMT+3:30, Eric Covener
wrote:
On Wed, Mar 17, 2021 at 12:36 PM Jason Long wrote:
>
> Why this is a matter to the Apache? In a real scenario, consider that an
> Apache Reverse Proxy servicing to 100 web servers, one of these servers is
No, it is not home work.
On Wednesday, March 17, 2021, 08:11:51 PM GMT+3:30, Eric Covener
wrote:
On Wed, Mar 17, 2021 at 12:36 PM Jason Long wrote:
>
> Why this is a matter to the Apache? In a real scenario, consider that an
> Apache Reverse Proxy servicing to 100 web ser
//1.2.3.5/
ProxyPassReverse http://1.2.3.5/
On Wednesday, March 17, 2021, 07:54:53 PM GMT+3:30, Antony Stone
wrote:
On Wednesday 17 March 2021 at 17:05:37, Jason Long wrote:
> Thank you.
> My VM uses port forwarding. When I browse 127.0.0.1:2080 on my host then it
&g
configuration?
On Wednesday, March 17, 2021, 07:45:47 PM GMT+3:30, Eric Covener
wrote:
On Wed, Mar 17, 2021 at 12:05 PM Jason Long wrote:
>
> Thank you.
> My VM uses port forwarding. When I browse 127.0.0.1:2080 on my host then it
> forwarded to my guest port 80.
&
another server. I used "
" and not any IP.
On Wednesday, March 17, 2021, 05:57:50 PM GMT+3:30, Antony Stone
wrote:
On Wednesday 17 March 2021 at 15:15:49, Jason Long wrote:
> One of my Apache server (192.168.1.4) is turned off and I tried to see my
> server.
Please
ne
wrote:
On Wednesday 17 March 2021 at 14:57:06, Jason Long wrote:
> My current configuration is:
>
>
> ServerName node3
> ErrorLog /var/log/httpd/error_log
> TransferLog /var/log/httpd/access_log
>
I don't like the look of the / in that tag.
Wednesday 17 March 2021 at 14:40:32, Jason Long wrote:
> Thank you.
> Which part of my configuration is wrong?
I don't know. I've lost track of what your configuration looks like now.
> My Reverse Proxy can see my Apache web servers and as I said, its worked
> with one host
10 PM GMT+3:30, Antony Stone
wrote:
On Wednesday 17 March 2021 at 14:28:29, Jason Long wrote:
> I want to have one Reverse Proxy server that service to some web servers
> that each of them has theirs domains and IPs. I want to know, for 10
> different websites that each of them has
at 13:25:34, Jason Long wrote:
> No, I don't need a load balance.
Okay, so each request goes to one back-end server, and if that server is
unavailable, the request fails. You do not expect the request to be sent to
another backend server instead.
> I want my Reverse Proxy service t
om server.
Is it clear? Examples that I found was about subdomain or...
On Wednesday, March 17, 2021, 03:43:26 PM GMT+3:30, Eric Covener
wrote:
On Wed, Mar 17, 2021 at 8:09 AM Jason Long wrote:
>
> Thank you.
> I saw https://stackoverflow.com/questions/50611098. I tested
March 2021 at 12:34:44, Jason Long wrote:
> I'm a newbie and as you said you are here from 2010. OK, tell me how can I
> configure an Apache Reverse Proxy to service to the multiple web servers?
I did a Google search for "Apache reverse proxy multiple web servers".
https://s
https://httpd.apache.org/docs/2.4/howto/reverse_proxy.html
No example!
Here is for questions and answers, not to spread hatred.
On Wednesday, March 17, 2021, 01:57:52 AM GMT+3:30, Stormy
wrote:
On 2021-03-16 5:43 p.m., Jason Long wrote:
> I used Name-based Virtual Host too:
Dear moderators,
M GMT+3:30, Jason Long
wrote:
I created two files under "/etc/httpd/conf.d" directory:
reverse_proxy1.conf
reverse_proxy2.conf
The content of reverse_proxy1.conf file:
ProxyPreserveHost On
ProxyPass / http://192.168.1.20/
ProxyPassReverse / http://192.168
;GET / HTTP/1.1" 503 299 "-"
"Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko)
Chrome/89.0.4389.86 Safari/537.36"
When I remove one of the .conf file, then it worked.
On Wednesday, March 17, 2021, 12:34:50 AM GMT+3:30, Eric Covener
wrote:
On
virtual hosts) or path... Either way
you'd need to decide how you want to distinguish from the user's point of view
which server the request is for.
Am 16.03.21, 21:23 schrieb Jason Long :
> Thanks.
> Thus, I can one .conf file under the "/etc/httpd/conf.d/" directory
2021 a las 21:23, Jason Long
() escribió:
>
> Thanks.
> Thus, I can one .conf file under the "/etc/httpd/conf.d/" directory with some
> servers. For example,
>
> #Server 1
>
> ProxyPreserveHost On
> ProxyPass / http://192.168.1.4/
>
ProxyPass / http://192.168.1./
ProxyPassReverse / http://192.168.1.5/
Am I right?
On Tuesday, March 16, 2021, 10:01:27 PM GMT+3:30, Antony Stone
wrote:
On Tuesday 16 March 2021 at 19:16:56, Jason Long wrote:
> Hello,
> For a website, I created a reverse proxy confi
Thank you so much.
On Tuesday, March 16, 2021, 12:44:45 PM GMT+3:30, Antony Stone
wrote:
On Tuesday 16 March 2021 at 09:13:54, Jason Long wrote:
> Hello,
> Instead of "ErrorDocument 403 "Unusual activity has been detected from
> this IP address."" mes
Hello,
For a website, I created a reverse proxy config file under the
"/etc/httpd/conf.d/" directory as below:
ProxyPreserveHost On
ProxyPass / http://192.168.1.4/
ProxyPassReverse / http://192.168.1.4/
If I have other servers, then I must create a config file for each
Hello,
Instead of "ErrorDocument 403 "Unusual activity has been detected from this
IP address."" message, how can I forward it to another page?
Thanks.
On Monday, March 15, 2021, 11:49:41 PM GMT+3:30, Jason Long
wrote:
I solved the problem:
I solved the problem:
Require all granted
Include conf/tor-ip.conf
ErrorDocument 403 "Unusual activity has been detected from this IP
address."
On Monday, March 15, 2021, 10:28:22 PM GMT+3:30, Antony Stone
wrote:
On Monday 15 March 2021 at 18:37:40,
I have a question. My website configuration must be inside of "..." ?
My "..." is outside of VirtualHost!
Please see: https://paste.ubuntu.com/p/fGsHN6mz8G/
On Monday, March 15, 2021, 09:08:11 PM GMT+3:30, Jason Long
wrote:
Yes. I saw the same IP address.
Yes. I saw the same IP address.
What is the problem?
On Monday, March 15, 2021, 05:07:07 PM GMT+3:30, Antony Stone
wrote:
On Monday 15 March 2021 at 14:23:18, Jason Long wrote:
> Thank you.
> As I said, I visted https://www.myip.com/ website without Tor Browser and
> it sho
Yes.
I create a load balancer my Apache website, but I'm thinking about my Reverse
Proxy itself.
On Monday, March 15, 2021, 04:15:52 PM GMT+3:30, Jim Albert
wrote:
On 3/15/2021 7:25 AM, Jason Long wrote:
> Thanks.
> Thus, Apache can't help me about it? I nee
me my IP is : 79.99.83.*
On Monday, March 15, 2021, 04:34:12 PM GMT+3:30, Antony Stone
wrote:
On Monday 15 March 2021 at 13:48:27, Jason Long wrote:
> Thank you.
> I guess something is wrong!
I agree with you.
> I put my IP address
Please answer, in as much detail a
address is
"1.2.3.4", but in Apache log, my IP address is "1.2.3.5".
Please see: https://paste.ubuntu.com/p/BhWN6dmCJX/
On Monday, March 15, 2021, 04:01:58 PM GMT+3:30, Antony Stone
wrote:
On Monday 15 March 2021 at 12:22:07, Jason Long wrote:
> Thank you.
&
.
El jue, 11 mar 2021 a las 20:29, Jason Long
() escribió:
>
> Hello,
> I configured my Apache Reverse Proxy as a Load Balancer to handle Back-End
> servers. When a Back-End server stopped, then another one provide service.
> How can I do it with Reverse Proxy server itself?
r-ip.conf | grep "IP"
Require not ip "IP"
Why?
On Monday, March 15, 2021, 01:29:31 AM GMT+3:30, Antony Stone
wrote:
On Sunday 14 March 2021 at 20:37:15, Jason Long wrote:
> I can visit my website with the Tor Browser!!!
Look in your website log files to find out whi
isit my website with the Tor Browser!!!
On Sunday, March 14, 2021, 11:00:19 PM GMT+3:30, Eric Covener
wrote:
On Sun, Mar 14, 2021 at 3:25 PM Jason Long wrote:
>
> Thanks.
> I commented that line and got below error:
>
> # apachectl configtest
> [Sun Mar 14 22:51:10.
/03/2021 à 17:23, Jason Long a écrit :
> Yes:
>
>
> Options -Indexes
> AllowOverride All
> Require all granted
> Include conf.d/tor-ip.conf
>
>
>
That is not my point.
How your conf files are loaded (the one for your vh, ...)?
Sometimes the "main"
Yes:
Options -Indexes
AllowOverride All
Require all granted
Include conf.d/tor-ip.conf
On Sunday, March 14, 2021, 07:04:15 PM GMT+3:30, Christophe JAILLET
wrote:
Le 14/03/2021 à 14:59, Jason Long a écrit :
> Hello,
> I want to block Tor IP addresses and I downloaded a list
14, 2021 at 10:00 AM Jason Long wrote:
> Hello,
> I want to block Tor IP addresses and I downloaded a list of Tor IP addresses
> and put it as a "tor-ip.conf" file under the "/etc/httpd/conf.d/" directory.
> Then edited my Virtual Host configuration file as belo
Hello,
I want to block Tor IP addresses and I downloaded a list of Tor IP addresses
and put it as a "tor-ip.conf" file under the "/etc/httpd/conf.d/" directory.
Then edited my Virtual Host configuration file as below:
Options -Indexes
AllowOverride All
Require all granted
Include conf.d/tor-ip.
r 11, 2021 at 9:34 AM Jason Long wrote:
> Hello,
> Is it true that NGINX is faster than Apache?
>
> https://www.hostingadvice.com/how-to/nginx-vs-apache/
>
> In which environment, Apache must use?
>
> Thank you.
>
>
Sorry. I asked it because in a tutorial, the author talked about configuring
Apache Tomcat on the Back-End servers first.
On Thursday, March 11, 2021, 11:06:18 PM GMT+3:30, Eric Covener
wrote:
On Thu, Mar 11, 2021 at 2:33 PM Jason Long wrote:
>
> Hello,
> Is Apache Tomcat
Hello,
Is Apache Tomcat needed to launch a Load Balancer?
Thank you.
-
To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org
For additional commands, e-mail: users-h...@httpd.apache.org
Hello,
I configured my Apache Reverse Proxy as a Load Balancer to handle Back-End
servers. When a Back-End server stopped, then another one provide service.
How can I do it with Reverse Proxy server itself? When a Reverse Proxy stopped,
then another Reverse Proxy provides services?
Thank you.
-
he box it is to restrictive (it breaks
wordpress admin ) so we don't actually use it
-Original Message-
From: Jason Long
Sent: 11 March 2021 18:47
To: users@httpd.apache.org
Subject: Re: [users@httpd] What should be considered about the reverse proxy
server? [EXT]
Thank you.
How about ques
proxy is between the internet and the webserver
There are some issues with mod_security and e.g. wordpress sites - so you have
to take care to tune it - we often just use a set of general rules to act as a
first level of security
-Original Message-
From: Jason Long
Sent: 11 March 2021
Hello,
Is it true that NGINX is faster than Apache?
https://www.hostingadvice.com/how-to/nginx-vs-apache/
In which environment, Apache must use?
Thank you.
-
To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org
For addit
need I to install Apache Web Server on the
Front-End server?
3- Can anyone tell me what is the main difference between the Forward Proxy and
Reverse Proxy?
On Thursday, March 11, 2021, 07:14:29 PM GMT+3:30, Antony Stone
wrote:
On Thursday 11 March 2021 at 15:35:17, Jason Long wrote
You can also add/remove headers on the way in/out.
-Original Message-
From: Jason Long
Sent: 11 March 2021 12:21
To: users@httpd.apache.org
Subject: Re: [users@httpd] What should be considered about the reverse proxy
server? [EXT]
Hello,
Can anyone answer to my questions?
1- What
M GMT+3:30, Jason Long
wrote:
Thank you so much.
Thus, The Front end and Back end servers are same about the security.
What does "handle backend server down" mean?
On Tuesday, March 9, 2021, 04:30:01 PM GMT+3:30, James Smith
wrote:
Yes - you should harden the front-en
Thank you so much.
Thus, The Front end and Back end servers are same about the security.
What does "handle backend server down" mean?
On Tuesday, March 9, 2021, 04:30:01 PM GMT+3:30, James Smith
wrote:
Yes - you should harden the front-end as this is what is likely to be
compromised
Hello,
Thank you.
I meant was the front end (Reverse Proxy) need any Apache hardening? Or just
Back end (WordPress and etc) need hardening?
Can anyone show me a complete Reverse Proxy configuration example?
On Tuesday, March 9, 2021, 02:03:23 AM GMT+3:30, Dino Ciuffetti
wrote:
>
> P
Hello,
I launched a reverse proxy server by Apache with below configuration:
ProxyPreserveHost On
ProxyPass / http://Server-IP/
ProxyPassReverse / http://Server-IP/
I have some questions:
1- the real work of a proxy server is just that lines?
2- The real configuration o
Problem solved.
It was because of SELinux:
# setsebool -P httpd_can_network_connect on
On Saturday, March 6, 2021, 10:11:27 PM GMT+3:30, Jason Long
wrote:
Thanks.
On VM1, I used VirtualBox Port Forwarding:
Protocol Host IP Host Port Guest IP Guest Port
Thanks.
On VM1, I used VirtualBox Port Forwarding:
Protocol Host IP Host Port Guest IP Guest Port
TCP 127.0.0.1 2080 10.0.3.15 80
When I enter "127.0.0.1:2080" in my browser, then logs on VM1 are:
# cat access_log
10.0.3.2 -
Hello,
I created two VMs in the VirtualBox. One of them is Reverse Proxy server and
another one is Apache Web Server.
The specifications of VM1 (Reverse Proxy) are as follows:
NIC 1 is NAT and Its IP address is "10.0.3.15".
NIC 2 is Internal Network and its IP address is "192.168.1.3".
The speci
Thank you.
If Apache can do it, then why ATS?
On Saturday, March 6, 2021, 05:21:04 PM GMT+3:30, William Dumangeng Jr
wrote:
Yes, Apache httpd can be a Reverse proxy too using "ProxyPass" directive in the
config file.
On Sat, Mar 6, 2021 at 9:35 PM Jason Long wrote
Thanks.
Apache can't do it?
On Saturday, March 6, 2021, 05:02:44 PM GMT+3:30, William Dumangeng Jr
wrote:
Reverse proxy software like Nginx, ATS or Varnish. Install any of those
software and the WAF in the same host.
On Sat, Mar 6, 2021 at 7:07 PM Jason Long wrote:
> Hi
Apache(Private
IP)
On Fri, Mar 5, 2021 at 7:26 PM Jason Long wrote:
> Hello,
> I want to launch a ModSecurity or an IDS\IPS as a reverse proxy and I have
> some questions. I'm a beginner and I'm thankful if anyone help me. My goal is:
>
> The Internet --> WAF or IDS
Hello,
I want to launch a ModSecurity or an IDS\IPS as a reverse proxy and I have some
questions. I'm a beginner and I'm thankful if anyone help me. My goal is:
The Internet --> WAF or IDS\IPS --> Web Server
My questions are:
1- On WAF server, I need Apache too?
2- Should I set the web server pu
Hello,I'm using CentOS and installed ModSecurity with below command:
# yum install mod_security mod_security_crs
After it, edited "/etc/httpd/conf.d/mod_security.conf" file and changed
"SecRuleEngine DetectionOnly" to "SecRuleEngine On" and restarted Apache
service.Any header or configuration lin
> From: Sean Hurley
> Sent: Thursday, February 25, 2021 12:04 PM
> To: users@httpd.apache.org
> Subject: [users@httpd] Urgent issue with reverse proxy
>
> Greetings,
>
> I have an issue with a long payload not being delivered by an Apache 2.4
> reverse proxy.
Did it ever work?
>
> Below is what
t?
On Tuesday, February 9, 2021, 06:39:57 PM GMT+3:30, Eric Covener
wrote:
On Tue, Feb 9, 2021 at 10:08 AM Jason Long wrote:
>
> Hello,
> I want to set a password for the WordPress logging page and when someone
> visit "https://mywebsite.com/wp-admin"; th
Hello,
I want to set a password for the WordPress logging page and when someone visit
"https://mywebsite.com/wp-admin"; then Apache asks a username and password and
then show the logging page. Something like
https://www.tecmint.com/phpmyadmin-login-password-protection-htaccess/
If my WordPress d
ind easier.
On Mon, Feb 8, 2021 at 11:00 AM Jason Long wrote:
>
> Thank you for your useful information.
> I checked my server with "https://securityheaders.com/ [securityheaders.com]"
> and result is:
> https://i.postimg.cc/SsBBtRsT/Header.png [i.postimg.cc]
>
>
What do you mean?
On Monday, February 8, 2021, 09:00:46 PM GMT+3:30, Nick Folino
wrote:
What a great site! It consolidates weak servers for hackers to find easier.
On Mon, Feb 8, 2021 at 11:00 AM Jason Long wrote:
> Thank you for your useful information.
> I checked my serve
Thank you for your useful information.
I checked my server with "https://securityheaders.com/"; and result is:
https://i.postimg.cc/SsBBtRsT/Header.png
To solve the Content Security Policy, I added below line to "httpd.conf":
Header set Content-Security-Policy "default-src 'self';"
But after it m
Hello,
I scanned my Apache web server and below Vulnerabilities discovered:
1- Content Security Policy (CSP) Header Not Set
2- HTTP to HTTPS Insecure Transition in Form Post
3- Reverse Tabnabbing
4- Source Code Disclosure - PHP
5- Source Code Disclosure - Perl
6- Sub Resource Integrity Attribute M
1 - 100 of 373 matches
Mail list logo
