So, I updated one of my servers to Apache-2.2 and Mod_security-2.1.2, and now I’m getting intermittent segfaults, which I think might be related to uploads and mod_security. I’ve been posting a few symptoms to the mod_sec mailing list, which has to be one of the best mailing lists on the planet. And now, I’m corresponding… Continue reading Apache Segfault.. Ugh
Okay, this has been bugging me a for a bit, and need to rant. Every night on run the following in cron: /usr/bin/glsa-check -l –nocolor 'affected' Everynight, I get an email sent to me with the following: [A] means this GLSA was already applied, [U] means the system is not affected and [N] indicates that… Continue reading GLSA – What’s up with PHP?
On one of my sites, I post various PHP code snippets and examples, and mod_security’s 50_outbound.conf would always warn about PHP source code leakage. The rule was correct, and it was in fact catching PHP code being sent in the response, but I wanted to allow this for this site. I did not want to… Continue reading Howto remove a single mod_security rule from a specific vhost
So after my successful upgrade to Apache-2.2, I’m seeing these two zero length files in /tmp -rw-r—– 1 apache apache 0 Sep 23 03:52 resource.dir -rw-r—– 1 apache apache 0 Sep 23 03:52 resource.pag Not sure what these are about, and they appear nightly if I delete them. So definitely not related to Apache service… Continue reading What’s up with resource.dir and resource.pag in /tmp? – Apache-2.2 related.
Today’s post will be about my procedure for upgrading Apache-2.0.59-r5 to apache-2.2.6. This is a major jump, and unfortunately, needs to happen. There are bugs-a-plenty at bugs.gentoo.org, and I touched upon these issues here. The first step before doing any large upgrade is to scour the forums. I always want/need to see what I’m in… Continue reading Upgrading Apache from 2.0.59-r5 to 2.2.6
So my wife updated her Firefox last night, and now it’s unable to resolve sites on the net. First thought, it has to be firewall.. right!?!? Of course, my irritation rises, since Norton is installed on that machine. I started disabling various ‘protections’, and still no-go? Okay, IE7 works, so I thought I’d reinstall 184.108.40.206… Continue reading I’m having issues with the latest update to Mozilla Firefox 220.127.116.11
I have to say, I like the recent upgrade to portage. I’ve noticed a few a great improvements. With the upgrade of portage-18.104.22.168, they implemented some subtle but great improvements. First off, I set up egress filtering with iptables, and I only allow certain process limited port access out of my box. This is a… Continue reading Portage-22.214.171.124.. very nice!
I’ve been fighting this problem for months now. When using cURL to connect to a API over SSL in my chroot’d web server, the application appeared to hang perpetually. After additional investigation, I discovered that it eventually get’s the content but takes FOREVER to finish (approximately an hour). Restarting Apache without mod_chroot and everything works… Continue reading mod_chroot + cURL and SSL leads to extremely slow performance
Since the last portage upgrade, I’ve been seeing the following messages after emerging packages. * Messages for package sys-libs/ss-1.40.2: * This profile has not been tested thoroughly and is not considered to be * a supported server profile at this time. For a supported server * profile, please check the Hardened project (http://hardened.gentoo.org). * This… Continue reading Server profile warning message after emerges — corrected with eselect
Lately my hosting provider for Uno_code has been less than stellar. You definitely get what you pay for, and what I have is no exception. So, I thought it would be nice to look for other alternatives. But wading through all the landing pages and affliate traps for hosting providers can get annoying. With this… Continue reading Web Hosting Unleashed – Hosting Research