Home » Posts filed under Apache

[Web server] Hide Apache and PHP information on Ubuntu

By Alex - in , , - on 4/10/2014 - pencil
By default, Apache will send version and modules information (e.g., mod_php, mod_perl, mod_ssl) in every HTTP header.
This tutorial for guide to fixed it, remove version and signature of Apache and PHP on Ubuntu server
Read more

[Troubleshooting] How to fix HeartBleed openSSL bug on Ubuntu

By Alex - in , , , - on 4/10/2014 - pencil
The Heartbleed Bug is a serious vulnerability in the popular OpenSSL cryptographic software library. This weakness allows stealing the information protected, under normal conditions, by the SSL/TLS encryption used to secure the Internet. SSL/TLS provides communication security and privacy over the Internet for applications such as web, email, instant messaging (IM) and some virtual private networks (VPNs).
Read more

[Web server] Authentication folder on Apache with htpasswd file or LDAP

By Alex - in , - on 1/02/2014 - pencil
Step 1. Authentication method:
S1. Authentication by file passwd
- Create password file
sudo nano /var/www/.passwd.txt
- Create new a user:
htpasswd /var/www/.passwd.txt username
- Create virtual host with passwd file for test folder in /etc/apache2/sites-enabled:
<Directory "/var/www/test/">        
AuthUserFile "/var/www/.passwd.txt"
AuthName "Please login for test"
AuthType Basic                
require user admin
</Directory>
Read more

[Liferay] Install SSL certificate on Apache for Liferay portal

By Alex - in , , - on 12/28/2013 - pencil
You need enable ssl mod of Apache before follow this guide
sudo a2enmod ssl
1. Setup SSL on Apache2 (Unauthenticated SSL Certificates)
S1. Generating a Certificate Signing Request (CSR)
To generate the keys for the Certificate Signing Request (CSR)
openssl genrsa -des3 -out server.key 2048
Now create the insecure key, the one without a passphrase, and shuffle the key names:
openssl rsa -in server.key -out server.key.insecure
mv server.key server.key.secure
mv server.key.insecure server.key
The insecure key is server.key, we can use this file to generate the CSR without passphrase.
To create the CSR, run the following command at a terminal prompt:
openssl req -new -key server.key -out server.csr
If you enter the correct passphrase, it will prompt you to enter Company Name, Site Name, Email Id, etc. Once you enter all these details, your CSR will be created and it will be stored in the server.csr file.
Read more

[Linux] Virtual host with mod_proxy on Apache2

By Alex - in , , - on 5/20/2013 - pencil
S1. Enable mod proxy
sudo a2enmod proxy
sudo a2enmod proxy_http
sudo service apache2 restart
Add a file virtual host /etc/apache2/sites-available/example.file
Read more