Category: Webserver

08.06.2017

client /etc/ssh/ssh_config is for client side config – here you can for example enable StrictHostKeyChecking yes /etc/ssh/ssh_known_hosts similar to ~/.ssh/known_hosts it contains the system-wide-accepted public keys of other hosts. So if you have „StrictHostKeyChecking yes“ enabled, you could manually accept […]

cool stuff you can do with ssh
07.06.2017

i assume you have setup public-private-key-authentication and tested its workings. run local scripts remotely You can run local scripts remotely by executing bash on the remote system and feeding it your script ssh user@host ‚bash -s‘ < script.s sftp kick […]

Programming Languages and Security
03.04.2017

ich wollte mal wissen, wie steht es eigentlich um die Security auf Technologie / Programmiersprachen-Ebene? D.h. welche Programmiersprachen machen es einem schwer vs. einfach sichere Software zu schreiben? Natürlich kann man in jeder Programmiersprache angreifbare Projekte entwickeln… das ist kein […]

22.01.2017

tested on vesta cp (apach2+nginx+Debian 8.7) this script could be placed into a file called: /scripts/mon_webserver_activity.sh #!/bin/bash #sh -c ‚tail -f /var/log/vesta/*.log && tail -f /var/log/nginx/*.log‘ & tail -f /var/log/vesta/*.log & tail -f /var/log/nginx/*.log & and you can run it […]

19.09.2016

what config file is nginx using? while it is running you can check via: ps uax|grep nginx root       766  0.0  0.0  41540     4 ?        Ss   Sep16   0:00 nginx: master process […]

13.09.2016

vim /etc/fail2ban/jail.conf; # open up the config file that defines all the defaults # find those lins: # # Destination email address used solely for the interpolations in # jail.{conf,local} configuration files. destemail = YourValidEmailAccount@YourDomain.com # Choose default action. To […]

13.09.2016

but also whole companies from israel are offering tools to nuke off your webserver with „rented“ DDoS attacks vim /etc/fail2ban/jail.local; # add those lines: [apache] enabled = true port = http,https filter = apache-auth logpath = /var/log/apache2/*error.log maxretry = 3 […]

27.08.2016

last -x shutdown shutdown system down  3.16.0-4-amd64   Sat Aug 27 16:31 – 16:32  (00:00)     shutdown system down  3.16.0-4-amd64   Fri Aug 26 08:10 – 08:11  (00:00)     shutdown system down  3.16.0-4-amd64   Thu Aug 25 11:04 […]

04.07.2016

… if you have ssh properly setup (public-private-key-based-auth) then you can easily connect via sftp to your host and abandon ftp, which is prone to security problems. E.g. with FileZilla to Disable vsftpd service vsftpd stop; # sto vsftpd service […]

22.06.2016

it was a bad idea to use the vestacp backup and restore function. unfortunately i believe you are better off restoring every domain by hand. systemctl status apache2.service ● apache2.service – LSB: Apache2 web server    Loaded: loaded (/etc/init.d/apache2)   […]

19.03.2016

it should work. apache2 is processing the request. nginx and lighttpd do not support .htaccess files, you will have to change their corresponding config files. 1. ssh into your server 2. go into your domain’s public_html directory cd /home/admin/web/domain-name.com/public_html/ mkdir […]

28.08.2015

Climate Change is affecting all of us. http://www.climateprediction.net/   https://youtu.be/vrYEh81O-Vs?t=552 -> „How do we get more detailed information?“ Computer Simulation ->  http://www.ipcc-data.org/ Projects Since Climateprediction.net was launched the combined computing power of its users has allowed scientists to carry out […]

27.08.2015

Setting up a simple SSL configuration Setting up a simple SSL configuration with Lighttpd is quite easy. Though this method should be used with care because this setup will only provide proper encryption, not authentication! The user will be presented […]

11.06.2015

the problem is on a hetzner Q7 Server with as little as 512MB RAM, MySQL keeps crashin. what can you do? repartition? -> DANGEROUS and almost impossible without powering down the system. ADD SWAP AS FILE! # check out if […]

01.06.2015

vesta cp reported me via mail (VERY GOOD 🙂 test -x /usr/sbin/anacron || ( cd / && run-parts –report /etc/cron.daily ) run-parts: /etc/cron.daily/ntpdate exited with return code 1 try and error2: vim /etc/default/ntpdate; # open up ntpdate config file # […]