Hello,I have some questions about Apache configuration and I'm thankful if
anyone help me.
1- In Apache configuration, both of "ServerName" and "ServerAlias" must be
defined? Which one must have "www" prefix?
2- If "/etc/pki/tls/private/localhost.key" and "/etc/ssl/certs/localhost.crt"
files de
my-sandbox-server.mydomain.com
ServerAlias freds-sandbox-server.mydomain.com
Include conf/ssl-conf/mydomain.com.conf
… configuration …
From: Jason Long Sent: 03 September 2020 22:43To:
users@httpd.apache.orgSubject: [users@httpd] Some questions about configuration
Apache from a b
Hello,
When I added "Header set Content-Security-Policy "default-src 'self';"" to
"httpd.conf" then my website style and some graphical features are disable.
Why?
Thank you.
-
To unsubscribe, e-mail: users-unsubscr...@httpd.apac
fault-src 'self'
Note there are no ' "" ' around the default-src.
My reference is:
https://developer.mozilla.org/en-US/docs/Web/HTTP/CSP
Regards,
John
========
On Thu, 2020-09-17 at 19:27 +, Jason Long wrote:
> Hello,
&g
Hello,
When I visit my website by its IP address the welcome page of Apache showed,
but with "https://domain-name.net"; everything is OK. How can I block direct
access by IP or forward it to domain?
I enabled "mod_rewrite" and my Virtual Host config is:
RewriteEngine on
RewriteCond %{SERVER_NAME
01-cgi.conf README
00-optional.conf 10-fcgid.conf
00-proxy.conf 10-h2.conf
On Tuesday, September 22, 2020, 11:12:28 AM GMT+3:30, Walter Penn
wrote:
Jason Long wrote:
> When I visit my website by its IP address the welcome page of Apache s
ing the command
'httpd -S'.
- Y
Sent from a device with a very small keyboard and hyperactive autocorrect.
On Tue, Sep 22, 2020, 9:15 AM Jason Long wrote:
> Where is "000-default.conf" file? I have not it!!
>
> # ls /etc/httpd/conf.modules.d/
> 00-base.conf
Can anyone here help me?
On Tuesday, September 22, 2020, 04:56:50 PM GMT+3:30, Jason Long
wrote:
I did:
# httpd -S
[Tue Sep 22 16:54:21.799963 2020] [so:warn] [pid 1419476:tid 139725243156800]
AH01574: module reqtimeout_module is already loaded, skipping
[Tue Sep 22 16:54:21.800135
e:
On Tue, Sep 22, 2020 at 3:38 AM Jason Long wrote:
>
> Hello,
> When I visit my website by its IP address the welcome page of Apache showed,
> but with "https://domain-name.net"; everything is OK. How can I block direct
> access by IP or forward it to domain?
How can I solve it?
On Thursday, September 24, 2020, 06:54:08 PM GMT+3:30, Eric Covener
wrote:
This is not avoidable.
The SSL handshake is always going to happen before the server has any
chance to redirect a request.
On Thu, Sep 24, 2020 at 11:20 AM Jason Long wrote:
>
> I
I'm using Let's Encrypt. Is it not enough?
On Thursday, September 24, 2020, 08:45:06 PM GMT+3:30, Eric Covener
wrote:
Use a certificate valid for (SAN entry) your IP or don't access the
server via the IP.
On Thu, Sep 24, 2020 at 11:26 AM Jason Long wrote:
>
&g
p 24, 2020, 11:28 AM Jason Long wrote:
> I'm using Let's Encrypt. Is it not enough?
>
>
>
>
>
>
> On Thursday, September 24, 2020, 08:45:06 PM GMT+3:30, Eric Covener
> wrote:
>
>
>
>
>
> Use a certificate valid for (SAN entry) you
Hello,
For a website with the name "my-example.net", what is the correct syntax of:
Header set Content-Security-Policy "default-src 'self';"
?
Thank you.
-
To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org
For addition
Header set Content-Security-Policy "default-src 'self';"
After it, some features of WordPress like menu disabled!
On Sunday, September 27, 2020, 05:29:51 PM GMT+3:30, Jim Albert
wrote:
On 9/27/2020 2:50 AM, Jason Long wrote:
> Hello,
> For a website wit
Hello,
Forwarding an IP address to HTTPS domain is the task of Apache or SSL?
Thank you.
-
To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org
For additional commands, e-mail: users-h...@httpd.apache.org
Thank you.
I want when a user enter my server IP address in his\her browser then it
forward to "https://mywebsite.com";.
On Monday, October 12, 2020, 12:14:31 PM GMT+3:30, Antony Stone
wrote:
On Monday 12 October 2020 at 07:25:56, Jason Long wrote:
> Hello,
>
.com&d=DwIFaQ&c=D7ByGjS34AllFgecYw0iC6Zq7qlm8uclZFI0SqQnqBo&r=oH2yp0ge1ecj4oDX0XM7vQ&m=rK8vCBmQ5CHbZU9JjXzRNDNz8RofAv82ZlfXjYIEtgY&s=rt4c_6jtMKJiE15dKtx138HTXgpDRMPcmCGbZ0yYwZk&e=
".
On Monday, October 12, 2020, 12:14:31 PM GMT+3:30, Antony Stone
wrote:
On Mo
t for
http://ip/ requests, define another.
On 12/10/20 10:26 AM, Jason Long wrote:
> Thank you.
> I added that lines to my Virtual Host file but it show me "Your connection is
> not private".
>
>
>
>
>
>
> On Monday, October 12, 2020, 05:16:27 PM GMT+3:
Excuse me, How?
On Monday, October 12, 2020, 06:29:38 PM GMT+3:30, Frank Gingras
wrote:
Always match the trailing slashes when redirecting.
On 12/10/20 10:43 AM, Jason Long wrote:
> # apachectl -S
> #
>
> My Virtual Host configuration is:
>
>
> Header always
yours. There is a subtle
difference.
Also, you don't need a documentroot in a vhost if you redirect every
request.
On 12/10/20 11:02 AM, Jason Long wrote:
> Excuse me, How?
>
>
>
>
>
>
> On Monday, October 12, 2020, 06:29:38 PM GMT+3:30, Frank Gingras
&g
At the end of domain name?
On Monday, October 12, 2020, 07:01:27 PM GMT+3:30, Frank
wrote:
I mentioned slashes. Look at yours, and mine.
On 12/10/20 11:22 AM, Jason Long wrote:
> You used "Redirect / https://hostname.tld/"; <https://hostname.tld/> and
> I'
Excuse me,Can you clean my configuration?
On Monday, October 12, 2020, 07:06:17 PM GMT+3:30, Frank
wrote:
James,
Omitting an explicit ServerName in name-based vhosts is a bad idea as
well. You can create conflicts or ambiguities.
On 12/10/20 11:22 AM, James Smith wrote:
> This would
## Put the rest of your wordpress stuff here...
From: Jason Long
Sent: 12 October 2020 16:39
To: users@httpd.apache.org
Subject: Re: [users@httpd] Forwarding IP to HTTPS. [EXT]
Excuse me,
Can you clean my configuration?
On Monday, October 12, 2020, 07:06:17 P
p;c=D7ByGjS34AllFgecYw0iC6Zq7qlm8uclZFI0SqQnqBo&r=oH2yp0ge1ecj4oD
>> X0XM7vQ&m=ERvrDk3V3OmOKQ_c29so3_jWrThxEfgCkxLIfX3sIvw&s=mw3MrVOeeCL66Y
>> rcxABO8NMrnnmzLmHQBeAdm0m8VYA&e=
>>
>> ## Do not use Server Alias here for alternative domains - only use
>> for
instead.
You'll want to read the contents of welcome.conf too.
Lastly, you don't need to use mod_rewrite to redirect. It should be your
last absolute resort. Every vhost should have an explicit ServerName set
too.
On 15/10/20 03:22 PM, Jason Long wrote:
> Hello,
> Here is t
Hello,
I have a WordPress website and my Virtual Host file include below lines:
Options Indexes FollowSymLinks
AllowOverride all
Require all granted
Some of my WordPress directories are browsable and when I open the URLs, then
the content of the directories displayed:
https://example.net/wp-c
Hello,
Any idea?
Thanks.
On Monday, November 16, 2020, 08:11:58 PM GMT+3:30, Jason Long
wrote:
Hello,
I have a WordPress website and my Virtual Host file include below lines:
Options Indexes FollowSymLinks
AllowOverride all
Require all granted
Some of my WordPress directories
in your Virtual host complete configuration ?
Le 22/11/2020 à 14:50, Jason Long a écrit :
> Hello,
> Any idea?
>
> Thanks.
>
>
>
>
>
>
> On Monday, November 16, 2020, 08:11:58 PM GMT+3:30, Jason Long
> wrote:
>
>
>
>
>
> Hello,
> I have a W
anted
(which is, I suppose, in server global configuration)
Le 23/11/2020 à 12:11, Jason Long a écrit :
> Sure.
>
>
> Header always set Strict-Transport-Security "max-age=63072000;
> includeSubdomains; preload"
> ServerAdmin root@localhost
> ServerName www.Examp
your original message :
Hello,
I have a WordPress website and my Virtual Host file include below lines:
Options Indexes FollowSymLinks
AllowOverride all
Require all granted
Le 24/11/2020 à 13:46, Jason Long a écrit :
> Not really.
> In server global configuration? Is you mean "
ke
sense to let .htaccess file override the configuration you are trying
to apply.
El sáb, 28 nov 2020 a las 17:20, Jason Long
() escribió:
>
> Thank you.
> I asked it on WordPress froum:
> https://wordpress.org/support/topic/how-to-disable-directory-listing-in-wordpress/#post-1371
Hello,
On a CentOS web server with Apache, someone make a lot of request and it make
slowing server. when I disable "httpd" service then problem solve. How can I
find who made a lot of request?
[url]https://imgur.com/O33g3ql[/url]
Any idea to solve it?
Thank you.
--
Thank you.
I see a lot of request in "/var/log/httpd/access_log".
On Tuesday, January 12, 2021, 02:46:10 AM GMT+3:30, Alain D D Williams
wrote:
On Mon, Jan 11, 2021 at 11:06:33PM +0000, Jason Long wrote:
> Hello,
> On a CentOS web server with Apache, someone make
matter.
On Tuesday, January 12, 2021, 02:47:01 AM GMT+3:30, Filipe Cifali
wrote:
You need to investigate your logs and find common patterns there, also there
are different tools to handle small and big workloads like you could use
iptables/nftables to block based on patterns and number
nd the patterns, either the attack
target or the attackers origins.
On Mon, Jan 11, 2021 at 8:26 PM Jason Long wrote:
> I used a rule like:
>
> # firewall-cmd --permanent --zone="public" --add-rich-rule='rule port
> port="80" protocol="tcp" accept
It is a lot of IP addresses !!!
On Tuesday, January 12, 2021, 03:30:02 AM GMT+3:30, Nick Folino
wrote:
How to find pattern:
Look at log.
Find bad things that are similar.
Then:
Block bad things from reaching web server.
On Mon, Jan 11, 2021 at 6:49 PM Jason Long wrote:
> How
Can you help me?
On Tuesday, January 12, 2021, 03:36:30 AM GMT+3:30, Nick Folino
wrote:
Concentrate on just one...
On Mon, Jan 11, 2021 at 7:02 PM Jason Long wrote:
> It is a lot of IP addresses !!!
>
>
>
>
>
>
> On Tuesday, January 12, 2021, 03
in bash shell
cat access.log | awk '{print $1}' | sort | uniq -c | sort -nr | head
This will show you most frequent IPs, sorted in descending order. Block as
needed
On 1/11/21, 7:11 PM, "Jason Long" wrote:
Can you help me?
On Tuesd
#x27; | sort | uniq -c | sort -nr | head
or I often use cut instead of awk..
tail -1 access.log | cut -d ' ' -f 1 | sort | uniq -c | sort -nr | head
-Original Message-
From: Jason Long
Sent: 12 January 2021 08:53
To: users@httpd.apache.org
Subject: Re: [users@httpd] Apache in un
Apache configuration is:
https://paste.ubuntu.com/p/RTC2WWMdYH/
And "www.conf" is:
https://paste.ubuntu.com/p/S9q5Kwpfcc/
And other settings:
https://paste.ubuntu.com/p/NydSyZghJ8/
Which one is not OK?
On Tuesday, January 12, 2021, 12:23:52 PM GMT+3:30, Jason Long
wrote:
:
https://security.stackexchange.com/q/35773/213194
Am 12.01.21, 10:26 schrieb Jason Long :
> Thank you, but "Firewalld" or "iptables" can't do it automatically? When an
>IP sending many request then it automatically blocked.
>
>
>
>
>
>
>
r web
development stuff it is a better flavour of linux}
What is the output of:
apache2 -t -D DUMP_MODULES
to see what modules you have installed
-Original Message-
From: Jason Long
Sent: 12 January 2021 09:43
To: users@httpd.apache.org
Subject: Re: [users@httpd] Apache in under attack.
System administrators doing it manually???
On Tuesday, January 12, 2021, 01:28:50 PM GMT+3:30, James Smith
wrote:
Rate limiting may work - but the rate may be just slightly to slow for your
setting - manually doing it is a good thing ...
-Original Message-
From: Jason Long
can use a cron job which emails you the output
of:
ps -e -o rsz,vsz,sz,cp,cmd | grep apache2 | grep -v grep | sort -k 1 -n
to see if you start or if it grows gradually
-Original Message-
From: Jason Long
Sent: 12 January 2021 10:01
To: users@httpd.apache.org
Subject: Re: [users@httpd
hared)
mime_module (shared)
mpm_prefork_module (shared)
perl_module (shared)
php7_module (shared)
proxy_module (shared)
proxy_ftp_module (shared)
proxy_http_module (shared)
rewrite_module (shared)
setenvif_module (shared)
status_module (shared)
-Original Message-
From: Jason Long
Sen
f you want incoming traffic you can do:
netstat -n | grep ':443 ' | grep -v TIME_WAIT
The incoming IP should be the 2nd address
(or ':80 ' if you aren't doing SSL)
Remove the grep -v TIME_WAIT to see all connections {and recent connections}
-----Original Message-
From:
you are causing the server to swap -
If you are permanently using a lot of swap then that slows down your processes
and can cause your request to back up (a bit like a traffic jam)
You should only really have about 20-30 modules running.
-Original Message-----
From: Jason Long
Sent: 12 J
Hello,
Can I use "htcacheclean" for clean memory instead of reset Apache service?
Thank you.
-
To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org
For additional commands, e-mail: users-h...@httpd.apache.org
Server have 4 CPU cores and 6GB of RAM.
I pasted Apache configuration. In your opinion, which parts of servers must be
examine?
On Wednesday, January 13, 2021, 08:30:58 PM GMT+3:30, @lbutlr
wrote:
> On 12 Jan 2021, at 01:52, Jason Long wrote:
>
> It show me:
>
>
>s %b \"%{Referer}i\" \"%{User-Agent}i\" %I %O"
combinedio
On Thursday, January 14, 2021, 11:43:33 PM GMT+3:30, Richard
wrote:
You should look at adding the %D and %T format strings to your httpd
access log configuration so that you can capture the
Hello,
I want to disable Directory Listing on my server and my Virtual Server
configuration is:
Options -Indexes
AllowOverride All
Require all granted
Is it OK and safe?
Thank you.
-
To unsubscribe, e-mail: users-unsubscr...
Hello,
Is it possible to disable Directory Listing for a directory and its
sub-directory except one of them?
For example, I used "Options -Indexes" and my directory have two
sub-directories "Dir1" and "Dir2", but I like Directory Listing enabled for
"Dir2".
Thank you.
-
Thank you.
I did:
Options -Indexes
AllowOverride All
Require all granted
But when I browse "https://MyDomain.net/wp-content/plugins"; then I can see the
content of the plugins directory!
Why?
On Thursday, January 21, 2021, 07:56:38 PM GMT+3:30, Dino Ciuffetti
wrote:
> Is it possib
ry Listing for all directories except
"wp-includes" directory then what should my settings be like?
Thank you.
On Friday, January 22, 2021, 01:11:41 AM GMT+3:30, Antony Stone
wrote:
On Thursday 21 January 2021 at 22:09:39, Jason Long wrote:
> I did:
>
> Options -
Hello,
Any idea?
On Friday, January 29, 2021, 04:07:30 PM GMT+3:30, Jason Long
wrote:
Thank you for your reply.
The "wp-content" directory is a sub-directory of "wp" directory:
$ ls /var/www/wp/
cgi-bin
Hello,
I scanned my Apache web server and below Vulnerabilities discovered:
1- Content Security Policy (CSP) Header Not Set
2- HTTP to HTTPS Insecure Transition in Form Post
3- Reverse Tabnabbing
4- Source Code Disclosure - PHP
5- Source Code Disclosure - Perl
6- Sub Resource Integrity Attribute M
Thank you for your useful information.
I checked my server with "https://securityheaders.com/"; and result is:
https://i.postimg.cc/SsBBtRsT/Header.png
To solve the Content Security Policy, I added below line to "httpd.conf":
Header set Content-Security-Policy "default-src 'self';"
But after it m
What do you mean?
On Monday, February 8, 2021, 09:00:46 PM GMT+3:30, Nick Folino
wrote:
What a great site! It consolidates weak servers for hackers to find easier.
On Mon, Feb 8, 2021 at 11:00 AM Jason Long wrote:
> Thank you for your useful information.
> I checked my serve
ind easier.
On Mon, Feb 8, 2021 at 11:00 AM Jason Long wrote:
>
> Thank you for your useful information.
> I checked my server with "https://securityheaders.com/ [securityheaders.com]"
> and result is:
> https://i.postimg.cc/SsBBtRsT/Header.png [i.postimg.cc]
>
>
Hello,
I want to set a password for the WordPress logging page and when someone visit
"https://mywebsite.com/wp-admin"; then Apache asks a username and password and
then show the logging page. Something like
https://www.tecmint.com/phpmyadmin-login-password-protection-htaccess/
If my WordPress d
t?
On Tuesday, February 9, 2021, 06:39:57 PM GMT+3:30, Eric Covener
wrote:
On Tue, Feb 9, 2021 at 10:08 AM Jason Long wrote:
>
> Hello,
> I want to set a password for the WordPress logging page and when someone
> visit "https://mywebsite.com/wp-admin"; th
Hello,I'm using CentOS and installed ModSecurity with below command:
# yum install mod_security mod_security_crs
After it, edited "/etc/httpd/conf.d/mod_security.conf" file and changed
"SecRuleEngine DetectionOnly" to "SecRuleEngine On" and restarted Apache
service.Any header or configuration lin
Hello,
I want to launch a ModSecurity or an IDS\IPS as a reverse proxy and I have some
questions. I'm a beginner and I'm thankful if anyone help me. My goal is:
The Internet --> WAF or IDS\IPS --> Web Server
My questions are:
1- On WAF server, I need Apache too?
2- Should I set the web server pu
Apache(Private
IP)
On Fri, Mar 5, 2021 at 7:26 PM Jason Long wrote:
> Hello,
> I want to launch a ModSecurity or an IDS\IPS as a reverse proxy and I have
> some questions. I'm a beginner and I'm thankful if anyone help me. My goal is:
>
> The Internet --> WAF or IDS
Thanks.
Apache can't do it?
On Saturday, March 6, 2021, 05:02:44 PM GMT+3:30, William Dumangeng Jr
wrote:
Reverse proxy software like Nginx, ATS or Varnish. Install any of those
software and the WAF in the same host.
On Sat, Mar 6, 2021 at 7:07 PM Jason Long wrote:
> Hi
Thank you.
If Apache can do it, then why ATS?
On Saturday, March 6, 2021, 05:21:04 PM GMT+3:30, William Dumangeng Jr
wrote:
Yes, Apache httpd can be a Reverse proxy too using "ProxyPass" directive in the
config file.
On Sat, Mar 6, 2021 at 9:35 PM Jason Long wrote
Hello,
I created two VMs in the VirtualBox. One of them is Reverse Proxy server and
another one is Apache Web Server.
The specifications of VM1 (Reverse Proxy) are as follows:
NIC 1 is NAT and Its IP address is "10.0.3.15".
NIC 2 is Internal Network and its IP address is "192.168.1.3".
The speci
Thanks.
On VM1, I used VirtualBox Port Forwarding:
Protocol Host IP Host Port Guest IP Guest Port
TCP 127.0.0.1 2080 10.0.3.15 80
When I enter "127.0.0.1:2080" in my browser, then logs on VM1 are:
# cat access_log
10.0.3.2 -
Problem solved.
It was because of SELinux:
# setsebool -P httpd_can_network_connect on
On Saturday, March 6, 2021, 10:11:27 PM GMT+3:30, Jason Long
wrote:
Thanks.
On VM1, I used VirtualBox Port Forwarding:
Protocol Host IP Host Port Guest IP Guest Port
Hello,
I launched a reverse proxy server by Apache with below configuration:
ProxyPreserveHost On
ProxyPass / http://Server-IP/
ProxyPassReverse / http://Server-IP/
I have some questions:
1- the real work of a proxy server is just that lines?
2- The real configuration o
Hello,
Thank you.
I meant was the front end (Reverse Proxy) need any Apache hardening? Or just
Back end (WordPress and etc) need hardening?
Can anyone show me a complete Reverse Proxy configuration example?
On Tuesday, March 9, 2021, 02:03:23 AM GMT+3:30, Dino Ciuffetti
wrote:
>
> P
Thank you so much.
Thus, The Front end and Back end servers are same about the security.
What does "handle backend server down" mean?
On Tuesday, March 9, 2021, 04:30:01 PM GMT+3:30, James Smith
wrote:
Yes - you should harden the front-end as this is what is likely to be
compromised
M GMT+3:30, Jason Long
wrote:
Thank you so much.
Thus, The Front end and Back end servers are same about the security.
What does "handle backend server down" mean?
On Tuesday, March 9, 2021, 04:30:01 PM GMT+3:30, James Smith
wrote:
Yes - you should harden the front-en
You can also add/remove headers on the way in/out.
-Original Message-
From: Jason Long
Sent: 11 March 2021 12:21
To: users@httpd.apache.org
Subject: Re: [users@httpd] What should be considered about the reverse proxy
server? [EXT]
Hello,
Can anyone answer to my questions?
1- What
need I to install Apache Web Server on the
Front-End server?
3- Can anyone tell me what is the main difference between the Forward Proxy and
Reverse Proxy?
On Thursday, March 11, 2021, 07:14:29 PM GMT+3:30, Antony Stone
wrote:
On Thursday 11 March 2021 at 15:35:17, Jason Long wrote
Hello,
Is it true that NGINX is faster than Apache?
https://www.hostingadvice.com/how-to/nginx-vs-apache/
In which environment, Apache must use?
Thank you.
-
To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org
For addit
proxy is between the internet and the webserver
There are some issues with mod_security and e.g. wordpress sites - so you have
to take care to tune it - we often just use a set of general rules to act as a
first level of security
-Original Message-
From: Jason Long
Sent: 11 March 2021
he box it is to restrictive (it breaks
wordpress admin ) so we don't actually use it
-Original Message-----
From: Jason Long
Sent: 11 March 2021 18:47
To: users@httpd.apache.org
Subject: Re: [users@httpd] What should be considered about the reverse proxy
server? [EXT]
Thank you.
How about ques
Hello,
I configured my Apache Reverse Proxy as a Load Balancer to handle Back-End
servers. When a Back-End server stopped, then another one provide service.
How can I do it with Reverse Proxy server itself? When a Reverse Proxy stopped,
then another Reverse Proxy provides services?
Thank you.
-
Hello,
Is Apache Tomcat needed to launch a Load Balancer?
Thank you.
-
To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org
For additional commands, e-mail: users-h...@httpd.apache.org
Sorry. I asked it because in a tutorial, the author talked about configuring
Apache Tomcat on the Back-End servers first.
On Thursday, March 11, 2021, 11:06:18 PM GMT+3:30, Eric Covener
wrote:
On Thu, Mar 11, 2021 at 2:33 PM Jason Long wrote:
>
> Hello,
> Is Apache Tomcat
r 11, 2021 at 9:34 AM Jason Long wrote:
> Hello,
> Is it true that NGINX is faster than Apache?
>
> https://www.hostingadvice.com/how-to/nginx-vs-apache/
>
> In which environment, Apache must use?
>
> Thank you.
>
>
Hello,
I want to block Tor IP addresses and I downloaded a list of Tor IP addresses
and put it as a "tor-ip.conf" file under the "/etc/httpd/conf.d/" directory.
Then edited my Virtual Host configuration file as below:
Options -Indexes
AllowOverride All
Require all granted
Include conf.d/tor-ip.
14, 2021 at 10:00 AM Jason Long wrote:
> Hello,
> I want to block Tor IP addresses and I downloaded a list of Tor IP addresses
> and put it as a "tor-ip.conf" file under the "/etc/httpd/conf.d/" directory.
> Then edited my Virtual Host configuration file as belo
Yes:
Options -Indexes
AllowOverride All
Require all granted
Include conf.d/tor-ip.conf
On Sunday, March 14, 2021, 07:04:15 PM GMT+3:30, Christophe JAILLET
wrote:
Le 14/03/2021 à 14:59, Jason Long a écrit :
> Hello,
> I want to block Tor IP addresses and I downloaded a list
/03/2021 à 17:23, Jason Long a écrit :
> Yes:
>
>
> Options -Indexes
> AllowOverride All
> Require all granted
> Include conf.d/tor-ip.conf
>
>
>
That is not my point.
How your conf files are loaded (the one for your vh, ...)?
Sometimes the "main"
isit my website with the Tor Browser!!!
On Sunday, March 14, 2021, 11:00:19 PM GMT+3:30, Eric Covener
wrote:
On Sun, Mar 14, 2021 at 3:25 PM Jason Long wrote:
>
> Thanks.
> I commented that line and got below error:
>
> # apachectl configtest
> [Sun Mar 14 22:51:10.
r-ip.conf | grep "IP"
Require not ip "IP"
Why?
On Monday, March 15, 2021, 01:29:31 AM GMT+3:30, Antony Stone
wrote:
On Sunday 14 March 2021 at 20:37:15, Jason Long wrote:
> I can visit my website with the Tor Browser!!!
Look in your website log files to find out whi
.
El jue, 11 mar 2021 a las 20:29, Jason Long
() escribió:
>
> Hello,
> I configured my Apache Reverse Proxy as a Load Balancer to handle Back-End
> servers. When a Back-End server stopped, then another one provide service.
> How can I do it with Reverse Proxy server itself?
address is
"1.2.3.4", but in Apache log, my IP address is "1.2.3.5".
Please see: https://paste.ubuntu.com/p/BhWN6dmCJX/
On Monday, March 15, 2021, 04:01:58 PM GMT+3:30, Antony Stone
wrote:
On Monday 15 March 2021 at 12:22:07, Jason Long wrote:
> Thank you.
&
me my IP is : 79.99.83.*
On Monday, March 15, 2021, 04:34:12 PM GMT+3:30, Antony Stone
wrote:
On Monday 15 March 2021 at 13:48:27, Jason Long wrote:
> Thank you.
> I guess something is wrong!
I agree with you.
> I put my IP address
Please answer, in as much detail a
Yes.
I create a load balancer my Apache website, but I'm thinking about my Reverse
Proxy itself.
On Monday, March 15, 2021, 04:15:52 PM GMT+3:30, Jim Albert
wrote:
On 3/15/2021 7:25 AM, Jason Long wrote:
> Thanks.
> Thus, Apache can't help me about it? I nee
Yes. I saw the same IP address.
What is the problem?
On Monday, March 15, 2021, 05:07:07 PM GMT+3:30, Antony Stone
wrote:
On Monday 15 March 2021 at 14:23:18, Jason Long wrote:
> Thank you.
> As I said, I visted https://www.myip.com/ website without Tor Browser and
> it sho
I have a question. My website configuration must be inside of "..." ?
My "..." is outside of VirtualHost!
Please see: https://paste.ubuntu.com/p/fGsHN6mz8G/
On Monday, March 15, 2021, 09:08:11 PM GMT+3:30, Jason Long
wrote:
Yes. I saw the same IP address.
I solved the problem:
Require all granted
Include conf/tor-ip.conf
ErrorDocument 403 "Unusual activity has been detected from this IP
address."
On Monday, March 15, 2021, 10:28:22 PM GMT+3:30, Antony Stone
wrote:
On Monday 15 March 2021 at 18:37:40,
Hello,
Instead of "ErrorDocument 403 "Unusual activity has been detected from this
IP address."" message, how can I forward it to another page?
Thanks.
On Monday, March 15, 2021, 11:49:41 PM GMT+3:30, Jason Long
wrote:
I solved the problem:
Hello,
For a website, I created a reverse proxy config file under the
"/etc/httpd/conf.d/" directory as below:
ProxyPreserveHost On
ProxyPass / http://192.168.1.4/
ProxyPassReverse / http://192.168.1.4/
If I have other servers, then I must create a config file for each
Thank you so much.
On Tuesday, March 16, 2021, 12:44:45 PM GMT+3:30, Antony Stone
wrote:
On Tuesday 16 March 2021 at 09:13:54, Jason Long wrote:
> Hello,
> Instead of "ErrorDocument 403 "Unusual activity has been detected from
> this IP address."" mes
ProxyPass / http://192.168.1./
ProxyPassReverse / http://192.168.1.5/
Am I right?
On Tuesday, March 16, 2021, 10:01:27 PM GMT+3:30, Antony Stone
wrote:
On Tuesday 16 March 2021 at 19:16:56, Jason Long wrote:
> Hello,
> For a website, I created a reverse proxy confi
2021 a las 21:23, Jason Long
() escribió:
>
> Thanks.
> Thus, I can one .conf file under the "/etc/httpd/conf.d/" directory with some
> servers. For example,
>
> #Server 1
>
> ProxyPreserveHost On
> ProxyPass / http://192.168.1.4/
>
1 - 100 of 145 matches
Mail list logo
