web server | Linuxaria

How to protect Apache with Fail2ban

Apr 232013

Around 2 years ago I wrote an article about fail2ban.

Fail2ban is an intrusion prevention framework written in the Python programming language. It is able to run on POSIX systems that have an interface to a packet-control system or firewall installed locally (such as, iptables or TCP Wrapper).
Fail2ban’s main function is to block selected IP addresses that may belong to hosts that are trying to breach the system’s security. It determines the hosts to be blocked by monitoring log files (e.g. /var/log/pwdfail, /var/log/auth.log, etc.) and bans any host IP that makes too many login attempts or performs any other unwanted action within a time frame defined by the administrator.

Today I want to show you some configurations that you can use to improve the security of your Apache.
Continue reading »

The Importance of Securing a Linux Web Server

Articles, Guides 4 Responses »

Jan 132013

Today I present a really interesting article by Scott Miller first published on Infosecinstitute.com.

With the significant prevalence of Linux web servers globally, security is often touted as a strength of the platform for such a purpose. However, a Linux based web server is only as secure as its configuration and very often many are quite vulnerable to compromise. While specific configurations vary wildly due to environments or specific use, there are various general steps that can be taken to insure basic security considerations are in place.

Many risks are possible from a compromise including using the web server into a source of malware, creating a spam-sending relay, a web or TCP proxy, or other malicious activity. The operating system and packages can be fully patched with security updates and the server can still be compromised based purely on a poor security configuration. Security of web applications first begins with configuring the server itself with strict security in mind.

Tune mod_jk to Boost HTTP/Java Server Performance

Articles, Guides No Responses »

Oct 252012

This is an article of mine first published on Wazi

The mod_jk connector serves as the glue between the Apache HTTP server and a Java application server such as Tomcat or JBoss. While most adminstrators concentrate on optimizing Apache or the Java server, setting up mod_jk optimally can also improve your users’ experience.

To be precise, mod_jk connects the Apache web server to the AJP port of a Java server. Apache Jserv Protocol is a binary version of HTTP that is optimized for communication over TCP between the Apache HTTP server and Apache Tomcat or other software.

sslh – a ssl/ssh multiplexer for Linux

07/22/2012
sslh – a ssl/ssh multiplexer for Linux
Posted by Riccardo at 18:58
2 Responses
Guides, Pills
Tagged with: corporate firewall, https, https protocol, incoming connections, linux, localhost, port 22, port 443, porta, porte 80, ports, remote server, server remoto, server web, ssh, ssh client, ssh connections, ssh server, sslh, vps, web server

Sometimes you have some firewall that don’t allows you to accept connection other than some specific ports let’s say that you can connect on your VPS or remote server only on the ports 80 (http) and 443 (https), but you need a port also for ssh to manage your vps/server but the port 443 is […]

How to put Varnish in front of your Webserver without doing any change.

04/30/2012
How to put Varnish in front of your Webserver without doing any change.
Posted by Riccardo at 20:37
12 Responses
Articles, Guides
Tagged with: accelerator, apache, control panel, cpanel, experience change, iptables, ispconfig, kloxo, linux, load balancing, nginx, open source web, porta 80, ports, static elements, Varnish, vps, web accelerator, web server

Varnish is an open source “web accelerator” which you can use to speed up your website. It can cache certain static elements, such as images or javascript but you can also use it for other purposes such as Load balancing or some additional security, in general most of the people want to try it and […]

Page 1 of 2 1 2 Older Entries