…alled W3 Total Cache. First Things First Please read my posts about APC on commodity virtual hosting servers and Apache and MySQL performance tuning before you begin. If you are running your virtual servers under FCGId, then you should do so for all virtual servers on your machine. Why? Because then you do not need apache’s mod_php (php module). Less modules loaded, less wasted memory. Comment out: LoadModule php5_module modules/libphp5.so… 6, 1, 1, 0 and 1971.83
…are/phpMyAdmin Alias /phpmyadmin /usr/share/phpMyAdmin <Directory /usr/share/phpMyAdmin/> <IfModule mod_authz_core.c> # Apache 2.4 <RequireAny> Require ip 127.0.0.1 Require ip ::1 </RequireAny> </IfModule> <IfModule !mod_authz_core.c> # Apache 2.2 Order Deny,Allow # comment out Allow from All and add your own static IPs here for security # Allow from A… 7, 0, 0, 0 and 1855.08
…scripts. To determine which MPM is running: /usr/sbin/apachectl -l If you see worker.c in the list of loaded modules, your Apache is running Worker MPM. If prefork.c, it is running prefork. To determine if apache has Worker MPM compiled in: /usr/sbin/httpd.worker -l If you see worker.c in the list of compiled-in modules, Apache can run Worker MPM. Here is some useful info to help if your installation of Apache will work with Worker MPM… 9, 1, 3, 0 and 1426.96
…n your server, and set up a clean install of Virtualmin with Nginx as the Alternative Web Server. Switching from Apache to Nginx later is difficult, as is transferring apache virtual server backups. Best to start fresh and build from scratch. Testing the Virtualmin Nginx Modules Virtualmin does not support Nginx and Apache together, and there is no easy migration from Apache to Nginx, so it is suggested to begin with a fresh install of Virtualmin… 2, 0, 0, 0 and 518.9
VacantServer WordPress sites are getting hammered with bad logins and probes. We’ve implemented a plugin to log failed login attempts to syslog, and a Fail2Ban filter for the same. If you run these on RedHat, you’ll need some additional configuration info… here it is: WordPress login failure regex (error_log):
1 | ^%(__prefix_line)sAuthentication failure for .* from <HOST>$ |
Apache nohome regex (error_log):
1 | [[]client <HOST>[]] File does not exist: .*/~.* |
[…]
…can Fail2Ban account for every change in log file location or structure from version to version. What worked for Centos 5.x may not work for CentOS 6.x; what worked in kernel 2.8 may be invalid in kernel 3.4. Also stated earlier, it is well worth the time to learn a little about RegEx. One vehicle to propel the admin far along the path is RegExr. Author Greg Skinner provides an online version as well as Adobe AIR standalone app. RegExr is an inva… 1, 0, 0, 0 and 467.01
…mysql/mysql.sock user=mysql symbolic-links=0 innodb_file_per_table = 1 thread_concurrency = 8 query_cache_size = 64M query_cache_limit = 4M thread_cache_size = 8 myisam_sort_buffer_size = 64M read_rnd_buffer_size = 8M read_buffer_size = 2M sort_buffer_size = 2M table_cache = 1600 table_definition_cache = 1600 max_allowed_packet = 4M key_buffer = 1G interactive_timeout = 2 wait_timeout = 5 long_query_time = 1 log_slow_queries = ON open_files_limit… 7, 1, 0, 0 and 467.01
…c from the Internet’s millions of malicious and compromised servers and personal computers. Reconfigured Apache web server, PHP and MySQL to better utilize the server’s horsepower. Cpanel’s efault Apache and MySQL configurations were limiting the number of concurrent user sessions the server could handle. Changed PHP to run as FastCGI (fcgid) and recompiled Apache to better handle the needs of a high traffic WordPress site. Co… 1, 0, 0, 0 and 441.06
…r security issue. Evidently this is a security measure to prevent cross-site attacks, but you can allow this via Apache mod_headers, to allow your specific CloudFront (or other) domain, specified in the .htaccess file. Some sites have suggested using “*” wildcards to allow all domains… but obviously this is a security issue: with this Header, you are granting JavaScript clients basic access to your resources. I recommend you onl… 3, 0, 0, 0 and 363.24
Chris Gilligan Information Architect, Web Server Administrator, Media Producer web • video • print chris@chrisgilligan.net chrisgilligan.com I design and produce information and communication media for university, corporate, small business, manufacturing and non-profit clients: web sites Information architecture and design for open source content management systems Linux Apache MySQL PHP web server administration Postfix Dovecot Sendmail […]