Warning: Missing argument 2 for add_presentationtoolkit_skin_options() in /home/nseidm1/bgevolution/blog/wp-content/plugins/presentation-toolkit/presentationtoolkit.php on line 460

DOS and Brute Force Prevention Using Fail2ban

Posted on March 16, 2008 by nseidm1.
Categories: Apache, Server, address, brute, dos, fail2ban, force, ip, log, prevention, ssh, web.

Dealing with dos and brute force attacks can be a daunting challenge. You can manually adjust your firewall to block particular ip addresses, but why not automate the process? What if a program can monitor your authentication, and other log files for suspicious activity? In these log files is a tremendous amount of info about failed login attempts, and how many times an ip address connects to your web server. Using this information a program can automatically adjust your firewall to block the offending ip addresses.

Fail2ban does just this. The program automatically monitors the log files of many programs. Most important is apache, and ssh.

http://www.fail2ban.org/wiki/index.php/Main_Page

Share, Enjoy, and Support:
  • Digg
  • del.icio.us
  • NewsVine
  • StumbleUpon
  • Technorati

Debian Mod Cband for Apache

Posted on November 16, 2007 by nseidm1.
Categories: Apache, cband, debian, mod.

To install type:

sudo apt-get install libapache2-mod-cband

Then add the following to your apache2.conf file:

LoadModule cband_module /usr/lib/apache2/modules/mod_cband.so

On Fedora there is modules folder link in the /etc/httpd configuration folder.

This blog post details configuring a virtualhost with cband throttling:

http://www.bgevolution.com/blog/index.php/apache-mod-cband/

Share, Enjoy, and Support:
  • Digg
  • del.icio.us
  • NewsVine
  • StumbleUpon
  • Technorati

Mcafee Online Port Scan Utility

Posted on November 14, 2007 by nseidm1.
Categories: Apache, Mcafee, Ports, scan.

Checking what ports are open on your system to make sure everything is closed is important. This quick Mcafee utility will tell you if your Apache default port 80 is open or not. For instance this is useful to determine if Apache is properly configure and listening on the intended port 80.

http://www.hackerwatch.org/probe/

Click “simple probe” and it will do a basic port scan of your system :)

Share, Enjoy, and Support:
  • Digg
  • del.icio.us
  • NewsVine
  • StumbleUpon
  • Technorati

Debian LAMP

Posted on November 5, 2007 by nseidm1.
Categories: Apache, Mysql, debian, php.

Debian is great to minimize software on the hard drive. With a minimal Debian installation, and the following apt commands, you will have a completely setup LAMP system in about 5-10 minutes. Simply run the following commands to install the appropriate software.

This will install apache with php support:

apt-get install apache2 php5 libapache2-mod-php5

This will install mysql with php support:

apt-get install mysql-server mysql-client php5-mysql

These two apt installation lines will take care of everything, and your Debian system will work just as a Ubuntu LAMP installation.

Share, Enjoy, and Support:
  • Digg
  • del.icio.us
  • NewsVine
  • StumbleUpon
  • Technorati

Ubuntu LAMP

Posted on September 9, 2007 by nseidm1.
Categories: Apache, LAMP, ubuntu.

Don’t scramble over what software you need to setup a webserver. The Ubuntu Server edition, during installation, offers the LAMP software package option. Installing this will automatically have a complete Apache system up and running in no time. The server will be complete with Mysql database support, and PHP dynamic website capabilities :)

What to use for a complete server package is really a no brainer; Ubuntu Server Edition. You can also try Debian Eth for some fun. Since Ubuntu is based on Debian you will not find much distinction, and they will both do the same thing, you will notice they just put slightly different finishing touches to create a respective brand.

Share, Enjoy, and Support:
  • Digg
  • del.icio.us
  • NewsVine
  • StumbleUpon
  • Technorati

WAMP (Windows, Apache, Mysql, PHP)

Posted on September 7, 2007 by nseidm1.
Categories: Apache, LAMP, Mysql, Windows, php, wamp.

The webserver community is well accustomed to the LAMP terminology. WAMP is the equivalent for Microsoft Windows platforms. The main difference is that WAMP does not include Windows, and a License must be purchased separately if you don’t already have one. Otherwise there are a variety of WAMP software packages that will completely implement a full webserver utilizing dynamic PHP, and Mysql database backend support.

Once of the more popular WAMP software package can be found at wampserver.com. While the domain name of their website makes for easy Google-ability, there are other software package competing for territory. There are almost two dozen different pacakges that all provide an excellent, easy installation process to easily setup a complete webserver system on the Windows platform.

Share, Enjoy, and Support:
  • Digg
  • del.icio.us
  • NewsVine
  • StumbleUpon
  • Technorati

Apache Document Root on External HD

Posted on August 27, 2007 by nseidm1.
Categories: Apache, sshfs.

There is a kick ass program called sshfs. It uses the fuse module to mount a remote directory, via ssh, on the local computer. To begin simply create a folder, on your local computer, that you will use as the mount point of your external directory. Then install sshfs. Debian distributions have it in the repositories:

sudo apt-get install sshfs

The command is used basically the same way as ssh, and scp. To mount an external directory you can do the following:

sshfs user@othermachineip:/directory /home/user/remotedirectory

The apache configuration option “documentroot” only can take a local directory as a value. To compensate, you can create a locally mounted remote partition, via sshfs, for use as an apache document root. In this way you will be using one computer as the web server, and a completely separate computer for file storage.

Personally, I think this is useful if a web service you offer allows uploads, and you want to have an external location to store them as to not clutter the server hard drive :)

Share, Enjoy, and Support:
  • Digg
  • del.icio.us
  • NewsVine
  • StumbleUpon
  • Technorati