…ost should be considered # dangerous unless properly secured by SSL Alias /phpMyAdmin /usr/share/phpMyAdmin Alias /phpmyadmin /usr/share/phpMyAdmin <Directory /usr/share/phpMyAdmin/> <IfModule mod_authz_core.c> # Apache 2.4 <RequireAny> Require ip 127.0.0.1 Require ip ::1 </RequireAny> </IfModule> <IfModule !mod_authz_core.c> # Apache 2.2 Order Deny,Allow # comment out Allow from All and add your own static… 15, 2, 1, 0 […]
…defaults(‘USE_AUTHENTICATION’,0); You can monitor errors with these commands: tail -f -n 50 /var/log/httpd/error_log tail -f -n 50 /home/domainname.com/logs/error_log In the logs, you should see messages like the following: mod_fcgid: process /home/username/public_html/scriptname.php(21272) exit(lifetime expired), terminated by calling exit(), return code: 0 … exit(server exited) … … exit(idle timeout) … if the cache is working well. If… […]
…ented on your web server and for your PHP script packages, you will be able to lower maxconnections, based on the information you receive from mysqltuner after 24-48 hours of steady traffic. For example, I have a server with Apache set to 256 maxclients, but the MySQL maxconnections set to 200, because many web requests […]
…ngle RegEx, nor log file location, is going to work for every distribution. Neither can Fail2Ban account for every change in log file location or structure from version to version. What worked for Centos 5.x may not work for CentOS 6.x; what worked in kernel 2.8 may be invalid in kernel 3.4. Also stated earlier, […]
…efault = 0 apc.filters = “-/home/username/public_html/scripts-not-to-cache/.*,-/home/username/public_html/apc/.*” apc.slam_defense = 0 apc.use_request_time = 1 apc.mmap_file_mask = /tmp/apc.XXXXXX apc.file_update_protection = 2 apc.enable_cli = 0 apc.max_file_size = 2M apc.stat = 1 apc.write_lock = 1 apc.report_autofilter = 0 apc.include_once_override = 0 apc.rfc1867 = 0 apc.rfc1867_prefix = “upload_” apc.rfc1867_name = “APC_UPLOAD_PROGRESS”… 8, 0, 0, 0 and 368.12
…HP and MySQL to better utilize the server’s horsepower. Cpanel’s efault Apache and MySQL configurations were limiting the number of concurrent user sessions the server could handle. Changed PHP to run as FastCGI (fcgid) and recompiled Apache to better handle the needs of a high traffic WordPress site. Configured a large MySQL table and query […]
VacantServer WordPress sites are getting hammered with bad logins and probes. We’ve implemented a plugin to log failed login attempts to syslog, and a Fail2Ban filter for the same. If you run these on RedHat, you’ll need some additional configuration info… here it is: WordPress login failure regex (error_log):
|
1 |
^%(__prefix_line)sAuthentication failure for .* from <HOST>$ |
Apache nohome regex (error_log):
|
1 |
[[]client <HOST>[]] File does not exist: .*/~.* |
[…]
…g JavaScript clients basic access to your resources. I recommend you only allow access to the specific CDN domains you require. Do this with a comma separated list, in double quotes. # BEGIN CDN Cross-Site for Webfonts <IfModule mod_mime.c> AddType font/ttf .ttf AddType font/eot .eot AddType font/opentype .otf AddType font/x-woff .woff </IfModule> <FilesMatch “\.(svg|ttf|otf|eot|woff)$”> <IfModule […]
…veloper Open source content management systems Web server and hosting administration, vacantserver.net and 223hosting.com Tech support and training for clients CTC Technologies / Chattanooga Online , Chattanooga, TN February, 2007 – March, 2008 Internet Architect Website design, web administration and email hosting for hundreds of clients Chris Gilligan Interactive July 2005 – February 2007 Designed […]
…almin for a shared hosting environment with APC cache, because it does allow to set php.ini and fcgiwrapper for every individual virtual host, and so to set an individual configuration for APC per virtual server. However with 200+ virtual hosts all running PHP script packages, as is the case with a commodity shared hosting server, […]