Category: Webserver

setup LAMP Linux Apache2 MariaDB PHP7.3 su – root; # become root apt update; # update system to latest apt upgrade; # database first apt install mariadb-server mariadb-client # set root pwd for database (can be root on dev test […]

the fast leight weight, secure and (used to be easy to configure) webserver lighttpd is currently not working under Fedora / RedHat / CentOS (7?) 8 because lighttpd (currently) can not bind at ipv4 while ipv6 is active (see). https://www.lighttpd.net/ […]

firewall & pinguin: iptables where do thou go? it is said that when using “ip-sets” iptables and nftables achieve almost same performance (amounts of ips possible to block, without server becoming slow/unresponsive) Redhat and nftables on DDoS “so the only […]

All users are strongly encouraged to upgrade to the latest versions of PHP 7.3.11 and PHP 7.2.24. Vulnerability in PHP7 exposes sites to remote hacking risk The problem only applies to NGINX servers with PHP-FPM enabled. image A dangerous vulnerability […]

don’t be evil “Google controls about 62% of mobile browsers, 69% of desktop browsers, and the operating systems on 71% of mobile devices in the world. 92% of internet searches go through Google and 73% of American adults use YouTube. […]

servers/clients/computers/programs/services/webservers need accurate time… they usually get it from time servers that have an atomic clock attached to their USB port. (just guessing) ping time.google.com PING time.google.com (216.239.35.4) 56(84) bytes of data. 64 bytes from time2.google.com (216.239.35.4): icmp_seq=1 ttl=46 time=43.5 […]

changing port for vestacp backend will also change port for /phpmyadmin vim /usr/local/vesta/nginx/conf/nginx.conf # find this lines # Vhost server { listen 8083; <- change new port :wq # save and quit # restart vesta service vesta restart what you […]

backups can become rather huge. and if you have your own backup mechanism in place… you should: web mode: per package manual mode: per user # edit per user-file: vim /usr/local/vesta/data/users/admin/user.conf # Look for BACKUPS=”?” # line to adjust how […]

IPv6: Introduction it’s the year 2019, roughly 14% of the web is running ipv6. you can watch real time statistics here: (i have no clue how accurate the data is, how they are generated) https://ipv6.he.net/v4ex/sidebar/? … but it seems there […]

firewall & pinguin: iptables where do thou go? it is said that when using “ip-sets” iptables and nftables achieve almost same performance (amounts of ips possible to block, without server becoming slow/unresponsive) Redhat and nftables on DDoS “so the only […]

1×× Informational 100 Continue 101 Switching Protocols 102 Processing 2×× Success 200 OK 201 Created 202 Accepted 203 Non-authoritative Information 204 No Content 205 Reset Content 206 Partial Content 207 Multi-Status 208 Already Reported 226 IM Used 3×× Redirection 300 […]

lately this blog gets bombarded with queries like these: which decoded are Korean SPAM? which translates as: iptables / firewalld seem not to work and have to really really figure out why. until then this is a little workaround, it […]

WARNING! BACKUP YOUR MACHINE! UNTESTED! before running this script change to your new web root: /home/UserName/web/domain.com/public_html then run it like /scripts/install_wordpress.sh it tries to: download and unpack the latest wordpress into the current directory disable xmlrpc.php disable wp-cron.php requirements: a […]

1. check what php.ini is used/loaded 1.1. place vim /home/user/web/domain.com/public_html/info.php with this content: <?php phpinfo(); which will look like this in your browser: MAKE SURE TO REMOVE info.php afterwards! nobody needs to know the details of your webserver. 2. centos7 […]

CentOS7: # search for roundcube config file find / -name *roundcubemail.conf* /usr/local/vesta/install/rhel/6/roundcube/roundcubemail.conf /usr/local/vesta/install/rhel/7/roundcube/roundcubemail.conf /usr/local/vesta/install/rhel/5/roundcube/roundcubemail.conf /etc/httpd/conf.d/roundcubemail.conf # search for installed packages yum list installed |grep roundcube roundcubemail.noarch # is enough to disable roundcube rm -rf /etc/httpd/conf.d/roundcubemail.conf # seems to be no […]

there are a lot of service providers where you can rent a virtual server… for example: hetzner, for 3€ per Month you would get 1x CPU core and 2GB of RAM, instead of VPS they also call it “cloud”, it […]

specs Compared to the Raspberry Pi 1 it has: A 900MHz quad-core ARM Cortex-A7 CPU 1GB RAM Like the (Pi 1) Model B+, it also has: 4 USB ports 40 GPIO pins Full HDMI port Ethernet port Combined 3.5mm audio […]

Why: Do MAJOR news outlets NOT use SSL? Euronews is not able to use SSL? Out of compatibility reasons? (maybe platform not ready yet? lame!) Because the surveillance state works better without SSL? I guess. Same goes for: https://spiegel.de -> […]

Secure Socket Layer (SSL) is a protocol that provides security for communications between client and server by implementing encrypted data and certificate-based authentication. Technically, the term “SSL” now refers to the Transport Layer Security (TLS) protocol, which is based on […]

nginx can be used as webserver, web-proxy and even mail-proxy. “Apache ist aufgrund seiner Architektur und Arbeitsweise doch eher der Traktor unter den Webservern.” X-D (src) let me try to translate: “Apache is due to its architecture and functioning rather […]

add value. creating a better world by free software + develop some degree of consciousness = adds value for all life on the planet. this is what software development is all about. whatever makes reaching this goal easier/better is welcome. […]

in general: social competence demands to first praise then critizise – no matter what – nobody is perfect or god. praise: Thanks for this massively cool webserver software – that can do so many things (vhosts and .htaccess and php) […]

i tried to compile under debian…. but it’s way more compli cated. also: you probably do not need all the packages stated here… but i did not have the time to sort those out sorry for that. feel free to […]

according to https://w3techs.com/technologies/overview/web_server/all apache(2 i guess) is still the dominant webserver on the internet with a market share of 50%. src: https://trends.builtwith.com/web-server according to builtwith.com it is “only” 40% market share for the apache(2) webserver. also most sites are running […]

“You will constantly have to fight for even the most basic of rights – and build your own infrastructure – or your government will spy on you and lobbyists try to take away your freedoms.” Watch this video and this: […]

client /etc/ssh/ssh_config is for client side config – here you can for example enable StrictHostKeyChecking yes /etc/ssh/ssh_known_hosts similar to ~/.ssh/known_hosts it contains the system-wide-accepted public keys of other hosts. So if you have “StrictHostKeyChecking yes” enabled, you could manually accept […]

i assume you have setup public-private-key-authentication and tested its workings and tightened security to only allow public-private key auth of specific non-root users. run local scripts remotely You can run local scripts remotely by executing bash on the remote system […]

If you need XDebug + Eclipse look here (allows step-debugging of your php code very very nice 🙂 . (slightly more complicated setup) lighttpd is “just as good” as apache2 – except – it does not support .htaccess. 🙁 But […]

sharing resources yes – but allowing anyone to access all files – and be it only in read mode – of your operating system – sounds adventurous. so you might want people to be able to securely up nad download […]

DNS is the “phone book” of the internet. Of course a user does not type “98.137.246.7” into one’s browser. no – the user types yahoo.com. the DNS system then asks the nearby (usually the router) what “phone number does yahoo.com […]