…ost should be considered # dangerous unless properly secured by SSL Alias /phpMyAdmin /usr/share/phpMyAdmin Alias /phpmyadmin /usr/share/phpMyAdmin # Apache 2.4 Require ip 127.0.0.1 Require ip ::1 # Apache 2.2 Order Deny,Allow # comment out Allow from All and add your own static… 15, 2, 1, 0 and 899.57
…defaults(‘USE_AUTHENTICATION’,0); You can monitor errors with these commands: tail -f -n 50 /var/log/httpd/error_log tail -f -n 50 /home/domainname.com/logs/error_log In the logs, you should see messages like the following: mod_fcgid: process /home/username/public_html/scriptname.php(21272) exit(lifetime expired), terminated by calling exit(), return code: 0 … exit(server exited) … … exit(idle timeout) … if the cache is working well. If… […]
…ented on your web server and for your PHP script packages, you will be able to lower maxconnections, based on the information you receive from mysqltuner after 24-48 hours of steady traffic. For example, I have a server with Apache set to 256 maxclients, but the MySQL maxconnections set to 200, because many web requests […]
…ngle RegEx, nor log file location, is going to work for every distribution. Neither can Fail2Ban account for every change in log file location or structure from version to version. What worked for Centos 5.x may not work for CentOS 6.x; what worked in kernel 2.8 may be invalid in kernel 3.4. Also stated earlier, […]
…efault = 0 apc.filters = “-/home/username/public_html/scripts-not-to-cache/.*,-/home/username/public_html/apc/.*” apc.slam_defense = 0 apc.use_request_time = 1 apc.mmap_file_mask = /tmp/apc.XXXXXX apc.file_update_protection = 2 apc.enable_cli = 0 apc.max_file_size = 2M apc.stat = 1 apc.write_lock = 1 apc.report_autofilter = 0 apc.include_once_override = 0 apc.rfc1867 = 0 apc.rfc1867_prefix = “upload_” apc.rfc1867_name = “APC_UPLOAD_PROGRESS”… 8, 0, 0, 0 and 364.38
…HP and MySQL to better utilize the server’s horsepower. Cpanel’s efault Apache and MySQL configurations were limiting the number of concurrent user sessions the server could handle. Changed PHP to run as FastCGI (fcgid) and recompiled Apache to better handle the needs of a high traffic WordPress site. Configured a large MySQL table and query […]
VacantServer WordPress sites are getting hammered with bad logins and probes. We’ve implemented a plugin to log failed login attempts to syslog, and a Fail2Ban filter for the same. If you run these on RedHat, you’ll need some additional configuration info… here it is: WordPress login failure regex (error_log):
1 | ^%(__prefix_line)sAuthentication failure for .* from <HOST>$ |
Apache nohome regex (error_log):
1 | [[]client <HOST>[]] File does not exist: .*/~.* |
[…]
…g JavaScript clients basic access to your resources. I recommend you only allow access to the specific CDN domains you require. Do this with a comma separated list, in double quotes. # BEGIN CDN Cross-Site for Webfonts AddType font/ttf .ttf AddType font/eot .eot AddType font/opentype .otf AddType font/x-woff .woff Header… 4, 0, 0, 0 and […]
Chris Gilligan Web Developer, Information Architect, Web Server Administrator, Media Producer web • video • print chris@chrisgilligan.net chrisgilligan.com I design and produce information and communication media for university, corporate, small business, manufacturing and non-profit clients: web sites Information architecture and design for open source content management systems Front-end UI design, HTML, PHP, LESS Linux Apache […]
…almin for a shared hosting environment with APC cache, because it does allow to set php.ini and fcgiwrapper for every individual virtual host, and so to set an individual configuration for APC per virtual server. However with 200+ virtual hosts all running PHP script packages, as is the case with a commodity shared hosting server, […]