Mod Security for Apache – Web Server Smart Firewall

Mod security has features that go above and beyond a standard firewall. It will help to prevent denial of service attacks, and also can be used to block traffic based on realtime blackhole lists issued by Spamhaus and others. Mod security is apparently in the Debian repositories as well as Ubuntu. In the Ubuntu repos you will have to enable the third party applications and update the aptitude databases. Then install:

sudo apt-get install libapache2-mod-security

Then enable the module:

sudo a2enmod security

By default there is a configuration file installed. The default configuration will provide you a basic starting point for the various security options available by the module. Please refer to the document for more information about what can be done. This blog shows how to use mod security to hit realtime blackhole lists to block nasty offenders of various natures.

http://www.inliniac.net/blog/2007/02/23/blocking-comment-spam-using-modsecurity-and-realtime-blacklists.html

Tags: debian repositories, denial of service, denial of service attacks, mod, module, security, security options, spamhaus, sudo, ubuntu

This entry was posted by nseidm1 on February 22, 2010 at 9:25 am, and is filled under Apache, firewall, mod, security. Follow any responses to this post through RSS 2.0. You can leave a response or trackback from your own site.

Related Posts
Comments (0)

No comments yet.

No trackbacks yet.

Ubuntu Flash

April 12, 2010 - 1:42 pm

Tags: animations, bit, flash, gnash, older versions, open source versions, sudo, swfdec, ubuntu, use
Posted in flash, nonfree, plugin, ubuntu | No comments

To install flash in Ubuntu use: sudo apt-get install flashplugin-nonfree This works on Ubuntu 32bit and 64bit. Flash is slightly unreliable on 64bit Ubuntu, but it works nonetheless. You can also install two open source versions of flash that have limited to good support. Gnash supports most older versions of swf animations, and newer versions [...]

VirtualBox 3.1.4 – Debian Lenny SMP Instability

March 27, 2010 - 1:30 pm

Tags: debian, desktop environment, fine, kernel, lenny, smp kernel, ubuntu, virtual machine, virtual machines, virtualbox, would make sense
Posted in Karmic, debian, lenny, smp, ubuntu, virtualbox | No comments

I use an Ubuntu Karmic desktop environment for my host. I use VirtualBox with Debian Lenny for virtual machines. Most of the time virtual machines work fine with multiple processors enabled in VirtualBox, but Debian Lenny does have some instability forcing the VirtualBox configuration to use 1 processor to maintain stability. Maybe changing the kernel, [...]

Apache Security – Necessary Settings

February 20, 2010 - 9:37 am

Tags: Apache, apache modules, apache php, basedir, ini, option search, php, security, security feature, signature option
Posted in Apache, option, parameter, php.ini, security | No comments

PHP is powerful, and allows static html pages to become dynamic. It also allows information to translate into commands and functions. Because of this you should implement a variety of security features. The biggest security feature, which increases security of the host machine, is setting the basedir parameter. This locks PHP functions to a particular [...]

Apache2 Server Side Includes

February 16, 2010 - 9:32 am

Tags: benifit, caption, client web, code, directory, directory path, document, gt options, host containers, html, Server, server parameters, shtml, side, sudo, Wikipedia
Posted in Server, apache2, include, side, ssi | No comments

Server side includes allow for external html documents to be injected into a page prior to it rendering on the client web browser. The benifit of this is eliminating the need to repetitiously repeat code over and over again. If you include the same scripts, on each of your website pages, you can create an [...]

Apache 2 Manage Modules and Sites – Configuration Structure

February 14, 2010 - 10:52 am

Tags: Apache, com, conf, default, document, document roots, example, host containers, php5, servername, software modules, sudo, virtualhost, www data
Posted in a2dismod, a2dissite, a2enmod, a2ensite, apache2, mod, php5 | No comments

Apache2 implements a structured method of organizing and enabling/disabling modules and sites. The default apache2 host is automatically turned on in /etc/apache2/sites-enabled/, and it includes the virtual hosting option. Therefore, by default, virtual hosting is enabled. Create your virtual host containers in /etc/apache2/sites-available, and then enable them by issuing the command: sudo a2ensite xxxxx.com VirtualHost [...]

Remote Server Management in Local Facility – LTSP

February 13, 2010 - 9:26 am

Tags: boot sequence, dhcp, dhcp servers, domain default, local ip, ltsp, machine, Server, server option, sudo
Posted in Server, inet, ltsp, tftp | No comments

I’m using LTSP to manage a server remotely in a local facility. I setup an LTSP server on the host machine, and will place it in an air-conditioned room to preserve longevity. I configured a machine, of much lower power, to PXE boot from the server. There are several nuances to setting up an LTSP [...]

Nvidia Driver on Linux – Easy, and Quick

February 7, 2010 - 9:07 am

Tags: desktop, desktop cd, driver, gdm, modules package, nvidia, nvidia driver, open source driver, startup settings, sudo
Posted in driver, gcc, headers, linux, modules, nvidia, xorg | 1 comment

Image via CrunchBase There is a buzz that installing the Linux based Nvidia accelerated graphics driver is complicated. I consider it rather straight forward. First install build-essential, and the headers for your kernel. Those may appear to be some bigs words in the previous sentence, but it is really one line in a terminal window. [...]

Linux CUPS Configuration – Foomatic

January 16, 2010 - 3:58 pm

Tags: configure, foomatic, hp drivers, ppd, printer, printer configuration, setup script, static ip address, sudo, Webmin
Posted in cups, driver, foomatic, linux, open, ppd, print | No comments

First install all needed packages. Your going to need cups, and the client, and the foomatic and openprinting drivers. sudo apt-get install cupsys cupsys-client Then install everything in: sudo apt-cache search foomatic If its an HP printer your going to want that library. HP has an auto setup script. Install the package and run: sudo [...]

2014 – Windows XP Deadline

December 30, 2009 - 9:23 am

Tags: alternative, company, database applications, framework, frontends, linux, longtime staple, thousand dollars, ubuntu, Windows
Posted in Uncategorized | No comments

Its time for a shift. Windows XP, the longtime staple of industries around the world, has a deadline. It will no longer be supported by Microsoft in 2014. Because of this companies will either need to upgrade to Windows 7, or some sort of alternative. Windows 7 costs been 4-6 thousand dollars for a 30 [...]

Lighttpd – A lighter Web Server

December 26, 2009 - 12:44 pm

Tags: Apache, apache modules, compression module, data transmission, kbytes, lighttpd, module, php, thing, transmission rates
Posted in Apache, Mysql, lighttpd, module, php | No comments

The first thing to do it get lighttpd installed with php and mysql working smoothly. Rather than reiterating the same content here is a convenient post: http://www.howtoforge.com/lighttpd_mysql_php_debian_etch Interesting options and various configuration for lighttpd can be found here: http://redmine.lighttpd.net/projects/lighttpd/wiki/Docs:ConfigurationOptions One insteresting, built in, option is throttling. Use connection.kbytes-per-second and you can effectivly limit users to [...]