Category Archives: Apache

Most powerful, reliable and flexible web server in the internet world

POODLE : Secure SSL configuration on apache

What is POODLE? POODLE stands for Padding Oracle On Downgraded Legacy Encryption Common Vulnerabilities and Exposures: CVE-2014-3566 What is POODLE attack? A man-in-the-middle exploit, which takes advantage of Internet and security software clients’ fallback to SSL 3.0 The attack occurs … Continue reading

Posted in Apache | Tagged , , , | Leave a comment

Web server securing guide

1   OS Hardening 1.1          Kernel hardening Update kernel parameter on /etc/sysctl.conf # Turn on exec shield kernel.exec-shield=1 kernel.randomize_va_space=1 # Enable IP spoofing protection net.ipv4.conf.all.rp_filter=1 # Disable IP source routing net.ipv4.conf.all.accept_source_route=0 # Ignoring broadcasts request net.ipv4.icmp_echo_ignore_broadcasts=1 net.ipv4.icmp_ignore_bogus_error_messages=1 # Make sure spoofed … Continue reading

Posted in Apache, Shell script, Unix/Linux | Leave a comment

Error during apache httpd starup

1. “[error] Init: SSLPassPhraseDialog builtin is not supported on Win32″ Reason – Apache has been installed on windows and unable to start because HTTPS  configuration. Solution – a. Remove/comment SSLPassPhrase context fromssl.conf or httpd.conf b. Make a copy of the … Continue reading

Posted in Apache, Unix/Linux, Windows | Tagged , , | Leave a comment

Create a self signed dummy SSL certificate in APACHE

* Generating a Private Key and CSR We assume you have openssl module/package installed on your system or server . The openssl toolkit is used to generate an RSA Private Key and CSR (Certificate Signing Request). It can also be … Continue reading

Posted in Apache, Unix/Linux | Tagged , , , | 2 Comments

Apache Tomcat and Apache HTTP web server integration (mod_jk vs mod_proxy)

Apache Tomcat and Apache HTTP web server integration – 1. I would advice to use Apache http web server module “mod_jk” instead of “mod_proxy” because of following reasons –   It has greater control to manage the request/response internally between … Continue reading

Posted in Apache, Unix/Linux | Tagged , , , | 1 Comment

SubVersion Integration with multiple Microsoft Active Directory for user authentication

* Download source of APR from here. And follow these steps. # tar -zxvf apr-version.tar.gz # cd apr-version # ./configure # make # make install * Download source of APR Utils from APR from http://download.nextag.com/apache/apr/. And follow these steps. # … Continue reading

Posted in Apache, SVN, Unix/Linux | Tagged , , , | Leave a comment

Securing Apache

First and foremost thing is to make sure you have insalled the latest apache and security patches. – Hide the Apache Version number, and other sensitive information. By default many Apache installations tell the world what version of Apache you’re … Continue reading

Posted in Apache, Unix/Linux | Tagged | Leave a comment

Enable Server Side Include (SSI) in Apache 2.x

Server side include scripts are mostly used by the .shtml files which requires ssi module in apache for execution of scripts and include function. Check if you have mod_include apache module installed with your installation of apache. you can check … Continue reading

Posted in Apache | Leave a comment