Debian

• http://www.apachetutor.org/admin/reverseproxies
• http://www.thebuzzmedia.com/using-apache-virtual-hosts-and-proxypass-together/

Pre Debian lenny

cd /tmp
wget http://mesh.dl.sourceforge.net/sourceforge/denyhosts/DenyHosts-2.6.tar.gz
tar xvfz DenyHosts-2.6.tar.gz
cd DenyHosts-2.6
python setup.py install
cd /usr/share/denyhosts
cp denyhosts.cfg-dist denyhosts.cfg
vi denyhosts.cfg
	#debian
	SECURE_LOG = /var/log/auth.log
	LOCK_FILE = /var/run/denyhosts.pid
cp daemon-control-dist daemon-control
vi /usr/share/denyhosts/daemon-control
	DENYHOSTS_BIN = "/usr/bin/denyhosts.py"
	DENYHOSTS_LOCK = "/var/run/denyhosts.pid"
	DENYHOSTS_CFG = "/usr/share/denyhosts/denyhosts.cfg"
chown root daemon-control
chmod 700 daemon-control
cd /etc/init.d
ln -s /usr/share/denyhosts/daemon-control denyhosts
update-rc.d denyhosts defaults
/etc/init.d/denyhosts start
cat /etc/hosts.deny

Resources

• DenyHosts
• Automated Install of Deny Host SSH Security for Ubuntu

My commonly used vi commands.

Moje často používané príkazy.

Full VI Cheat Sheets - References

find DIR -name PATTERN
find /var/www -mtime -1 -name '*.php'

modification time in hours: -mtime HOURS
modification time in minutes: -mmin MINUTES

• n:  exactly n 24-hour periods (days) ago, 0 means today.
• +n: more then n 24-hour periods (days) ago, or older then n,
• -n: less than n 24-hour periods (days) ago (-n), or younger then n. -1 means today.

source

vi /etc/apache2/apache2.conf
vi /etc/apache2/httpd.conf

/etc/apache2

/sites-available

A list of configuration files - one per site. A blank install will contain the file default. The system admin can have as many sites here as they need - however - they will not all be active.

/sites-enabled

A list of symlinks to configuration files in sites-available. A blank install will contain a symlink 000default to sites-available/default. The sites listed here are the sites which will be active. The site to be used if no virtual hosts match will be the first file found (hence the 000 on 000default).

U mňa: aaa.net -> match.nawebe.net aby zobrazil "The requested alias was not found on this server."

#enabling site xxx
a2ensite xxx

#disabling site xxx
a2dissite xxx

/etc/init.d/apache2 reload

/mods-available

A list of configuration files - one or more per module. Each dpkg installed module will add files here. e.g. php4.conf and php4.load are added with the libapache2-mod-php package. Again - the system admin can install whatever modules they wish - however - until they are set available they will not be active.

/mods-enabled

A list of symlinks to configuratioon files in modes-available. Only modules linked in here will be activated on the webserver.

#enabling modul xxx
a2enmod xxx
a2enmod rewrite

#disabling module xxx
a2dismod xxx

/etc/init.d/apache2 restart

Example

vi /etc/apache2/sites-available/ekniznica.eu

<VirtualHost *:80>
        ServerName ekniznica.eu
        ServerAlias www.ekniznica.eu
        DocumentRoot /var/www/ekniznica.eu/www/
        <Directory />
                Options FollowSymLinks
                AllowOverride All
        </Directory>

        ErrorLog /var/www/ekniznica.eu/log/error-ekniznica.eu.log
        LogLevel warn
        CustomLog /var/www/ekniznica.eu/log/access-ekniznica.eu.log combined
</VirtualHost>

a2ensite ekniznica.eu
/etc/init.d/apache2 reload

Formatted listing of the directory

Options +Indexes

If a URL which maps to a directory is requested, and there is no DirectoryIndex (e.g., index.html) in that directory, then mod_autoindex will return a formatted listing of the directory. #Options Directive

.htaccess tips and tricks

.htaccess file generator

How to reset root password?

pkill mysqld
mysqld_safe --skip-grant-tables
mysql --user=root mysql
update user set Password=PASSWORD('my_pass') where user='root';
flush privileges;
exit;

Create database and grant user

mysql -u root -p
my_password
create database my_db;
grant all privileges on my_user.* to 'my_db'@'localhost' identified by 'my_pass';

Import sql file

use mydatabase
source filename.sql

Export/Import database

mysqldump -u username -ppassword database_name > dump.sql
mysql -u username -ppassword database_name < dump.sql

Nastavenie servra

~$ apt-get install pure-ftpd-common pure-ftpd
~$ groupadd ftpgroup
~$ useradd -g ftpgroup -d /dev/null -s /etc ftpuser
~$ pure-pw useradd nawebe -u ftpuser -g ftpgroup -d /var/www
# commitnúť zmeny
~$ pure-pw mkdb
~$ echo no > /etc/pure-ftpd/conf/PAMAuthentication
~$ echo no > /etc/pure-ftpd/conf/UnixAuthentication

Spustenie servera

~$ /usr/sbin/pure-ftpd -j -E -B -f none -c 20 -C 3 -I 5 -l puredb:/etc/pure-ftpd/pureftpd.pdb

Vysvetlivky

-j //automatically create home directory
-E //only allow authenticated users
-B //start in background (daemonization)
-f none //facility for syslog logging, none :disabled
-c 20 //maximum of clients to be connected
-C 2 //number of simultanous connections
-I 5 //maximum idle time
-l puredb: //rule to the authentication metod

Čo ak mi tam niečo už beží?

Unable to start a standalone server: Address already in use
~$ netstat -ap | grep "*:ftp"
tcp  0   0 *:ftp   *:*   LISTEN   1302/inetd
~$ kill PID

Správa userov

~$ pure-pw list
~$ pure-pw show nawebe

~$ pure-ftpwho

~$ pure-pw passwd test

~$ pure-pw userdel test

www.nawebe.net -> nawebe.net

RewriteEngine On
RewriteCond %{HTTP_HOST} ^www.nawebe.net [NC]
RewriteRule ^(.*)$ http://nawebe.net/$1 [L,R]
RewriteCond %{REQUEST_FILENAME} !-f
RewriteCond %{REQUEST_FILENAME} !-d
RewriteRule ^(.*)$ index.php?v=$1 [PT,L,QSA]

nawebe.net -> www.nawebe.net

RewriteEngine On
RewriteCond %{HTTP_HOST} ^nawebe.net [NC]
RewriteRule ^(.*)$ http://www.nawebe.net/$1 [L,R]
RewriteCond %{REQUEST_FILENAME} !-f
RewriteCond %{REQUEST_FILENAME} !-d
RewriteRule ^(.*)$ index.php?v=$1 [PT,L,QSA]

Odstrániť lomku

RewriteCond %{HTTP_HOST} ^www.example\.com$ [NC]
RewriteRule ^(.+)/$ http://%{HTTP_HOST}/$1 [R=301,L]