Results 1 to 10 of 15
-
5th Nov 2011, 02:32 PM #1
Apache 2.2.x security tricks (CentOS)
- Install httpd-devel and gcc:
Code:yum install httpd-devel gcc
- Download this modules (you'll need the .c files)
mod_allowmethods: http://www.apachelounge.com/viewtopic.php?t=4238
mod_antiloris: http://www.apachelounge.com/viewtopic.php?t=4222
mod_reqtimeout: https://github.com/apache/httpd/blob...d_reqtimeout.c - Upload those files to your server (secure ftp via ssh port should be a good way to do so).
- Build and install the modules
Code:apxs -cia mod_allowmethods.c apxs -cia mod_antiloris.c apxs -cia mod_reqtimeout.c
- Configure it
Go to /etc/httpd/conf.d and add a file named 3rdparty.conf with:
Code:TraceEnable Off <Directory /> LimitRequestBody 8388608 <IfModule allowmethods_module> AllowMethods GET HEAD OPTIONS POST </IfModule> </Directory> <IfModule antiloris_module> IPReadLimit 20 </IfModule> <IfModule reqtimeout_module> RequestReadTimeout header=20-40,MinRate=500 body=20,MinRate=500 </IfModule>
Enjoy
If running cPanel you have to run after installing the module:
Code:/usr/local/cpanel/bin/apache_conf_distiller --update
NewEraCracker Reviewed by NewEraCracker on . Apache 2.2.x security tricks (CentOS) Install httpd-devel and gcc: yum install httpd-devel gcc Download this modules (you'll need the .c files) mod_allowmethods: http://www.apachelounge.com/viewtopic.php?t=4238 mod_antiloris: http://www.apachelounge.com/viewtopic.php?t=4222 mod_reqtimeout: https://github.com/apache/httpd/blob/2.2.x/modules/filters/mod_reqtimeout.c Upload those files to your server (secure ftp via ssh port should be a good way to do so). Rating: 5Trusted: Dom, l0calh0st, 0ccul7, robert420
Find all threads started by NewEraCracker
- Install httpd-devel and gcc:
-
5th Nov 2011, 02:51 PM #2
I think the uploading limit is not going to affect the forums. We can use it.
-
6th Dec 2011, 04:04 PM #3Member
Ok, but what overall conclusion to install this ? which area its cover ? what are the benefits ? even we can install mod_evasive to do this all in just one module !
Thanks
-
6th Dec 2011, 08:00 PM #4
mod_evasive is old and un-efficient with the new attack vectors to apache.
Trusted: Dom, l0calh0st, 0ccul7, robert420
Find all threads started by NewEraCracker
-
19th Dec 2011, 09:38 PM #5Member
mod_antiloris is making error in my apache:
Apache restart failed. Unable to load pid from pid file and no httpd process found in process list.
If apache restart reported success but it failed soon after, it may be caused by oddities with mod_ssl.
You should run /usr/local/cpanel/scripts/ssl_crt_status as part of your troubleshooting process.
Pass it --help for more details.
Also be sure to examine apache's various log files.
Apache Restart Output:
[Mon Dec 19 12:10:47 2011] [notice] caught SIGTERM, shutting down
-
20th Dec 2011, 04:12 PM #6
maxtor, It seems you are running cPanel in your server, you should contact cPanel support for help into getting your issues fixed. I only work with servers via SSH and Webmin (don't use cPanel).
Trusted: Dom, l0calh0st, 0ccul7, robert420
Find all threads started by NewEraCracker
-
22nd Dec 2011, 05:09 AM #7MemberWebsite's:
newrapidleech.com blog.newrapidleech.comnice share, awesome contributions, as always :thumbsup:
-
22nd Dec 2011, 10:50 PM #8MemberWebsite's:
serverno.deIt would also be a good idea to learn how to setup good mod security rules and install that, it'll help a lot against certain attacks.
-
13th Jan 2012, 03:07 PM #9Retired NinJaWebsite's:
loledhard.combump, this should help loads of guys here
You don't hate Justin bieber.You hate the fact you ain't Justin Bieber!
-
14th Jan 2012, 08:00 AM #10MemberWebsite's:
10gb.in uploadjet.neti have tried to install these on my cpanel server but modules doesnt load even though build seems successful , even restart of apache doesn't show any error any clue ?
10Gb.in - Affordable Web Hosting Strictly No oversell |
Kimsufi Reseller With 80 payment options
Sponsored Links
Thread Information
Users Browsing this Thread
There are currently 1 users browsing this thread. (0 members and 1 guests)
Similar Threads
-
CentOS Apache Help
By feronso in forum Server ManagementReplies: 3Last Post: 30th May 2012, 08:47 PM -
How to put Varnish in front of Apache on CentOS?
By AlternativeWeb in forum Server ManagementReplies: 4Last Post: 24th May 2012, 05:04 PM -
How To Install Apache with MySQL and PHP on Linux CentOS
By enetcloud in forum Tutorials and GuidesReplies: 3Last Post: 21st Aug 2011, 01:11 PM -
How do i uninstall apache on Centos 5?
By RNBxBeatz in forum Webmaster DiscussionReplies: 3Last Post: 22nd Apr 2011, 02:44 PM -
Linux Hardening & Security[cP/WHM + Apache]
By Krun!x in forum Technical and Security TutorialsReplies: 5Last Post: 22nd Jul 2009, 01:05 AM
themaManager - edit and manage...
Version 4.04 released. Open older version (or...