|
||||||
|
PCI Compliance Disable ETags PCI Compliance Disable ETags To alleviate security risks arising from disclosure of information about files and their properties by Apache Web server, disable FileETag directive. For PCI Compliance it is required to disable ETags Create a file at /etc/httpd/conf.d/no-etags.conf with the following: Header unset ETag FileETag None Then of course restart […] Setup Caching on Apache Setup Caching Please note that caching will only work for non-secure data. It is not possible to cache data from a HTTPS url. To configure caching, we’ll first have to enable it in apache: Start yast Go to network services Select the “HTTP Server” Go to “Server Modules”: Enable these […] Mod Security Mod security has a default configuration file, and comes with a core rule set. The configuration works with include files which work for the modsecurity part like this: httpd.conf | |– default-server.conf . . . . . . . . . set up the default server that replies to non-virtual-host requests | […] Apache troubleshooting commands Commands ps aux | grep httpd pstree -p | grep httpd strace -f -o trace.txt /etc/rc.d/init.d/httpd start Sometime Apache process, keeps on execution (Seems like Hangs), so generally trying to get the exact PHP file that is running by Apache Process, So here is my Try. I used Strace to […] Forward Proxy and reverse proxy Proxy server types and uses for HTTP Server (powered by Apache) This topic provides information about proxy server types and uses. Important: Information for this topic supports the latest PTF levels for HTTP Server for iSeries . It is recommended that you install the latest PTFs to upgrade to […] Apache Performance Tuning Forewarning: “Premature optimization is the root of all evil.” — Donald Knuth. Select MPM Chose the right MPM for the right job: prefork [default MPM for Apache 2.0 and 1.3]: • Apache 1.3-based. • Multiple processes, 1 thread per process, processes handle requests. • Used for security and stability. • Has […] 1. Apache server performance Apache server performance can be improved by adding additional hardware resources such as RAM, faster CPU etc. But, most of the time, the same result can be achieved by custom configuration of the server. This article looks into getting maximum performance out of Apache with the existing hardware resources, specifically on […] Hardening guide for Apache From: ServerSignature OnTo: ServerSignature Off HostnameLookups Off From: # ServerTokensTo: ServerTokens Prod From: ServerAdmin you@yourhost.comTo: ServerAdmin webmaster@yourcompany.com From: LogLevel warnTo: LogLevel notice From: IndexOptions FancyIndexing VersionSortTo: # IndexOptions FancyIndexing VersionSort # To: # AddIcon From: DefaultIcon /icons/unknown.gifTo: # DefaultIcon /icons/unknown.gif From: Alias /icons/ “/var/apache2/icons/”To: # Alias /icons/ “/var/apache2/icons/” From: AliasMatchTo: […] Apache capacity planning LogFormat “%{X-Forwarded-For}i %l %u %t \”%r\” %>s %b \”%{Referer}i\” \”%{User-Agent}i\”” proxy SetEnvIf X-Forwarded-For “^.*\..*\..*\..*” forwarded CustomLog “logs/access_log” combined env=!forwarded CustomLog “logs/access_log” proxy env=forwarded The apache MPM http://articles.slicehost.com/2010/5/19/configuring-the-apache-mpm-on-centos http://www.howtoforge.com/configuring_apache_for_maximum_performance The apache MPM Part of the apache web server installation is the “MPM”, which stands for “Multi-Processing Method”. The MPM determines the mechanism apache […] Extending Swap on an LVM2 Logical Volume 1)Check swap space and its utilization cat /proc/swaps # free 2) Scan (all disks) for Logical Volumes lvscan [root@localhost ~]# lvscan ACTIVE ‘/dev/VolGroup/lv_root’ [47.44 GiB] inherit ACTIVE ‘/dev/VolGroup/lv_home’ [46.19 GiB] inherit ACTIVE ‘/dev/VolGroup/lv_swap’ [5.88 GiB] inherit 3) Disable devices and files for paging and swapping swapoff -v […] |
||||||
|
Copyright © 2024 - All Rights Reserved Powered by WordPress & Atahualpa |
||||||
Recent Comments