Маленький веб

Компактная и портабельная программа, четко выполняющая свое предназначение — редкая для современного мира красота и услада для глаз опытного разработчика. Именно такие проекты, реализующие различные серверы и клиенты для веба вы найдете в этой статье.

https://habr.com/ru/articles/993094/

#httpd #ftpсервер #ftpd #rcp #cpp #c++

Hey #CrowdSec people, when installing the #Apache bouncer, do I still need the log acquisitions?

#httpd

Does anyone run #iocaine (anti AI protection) with #apache #httpd? Didn't find anything on the web (vor searched wrong)

now self-hosting my git repos with gotwebd(8)
https://romanzolotarev.com/got/

kudos to @stsp :ablobattention:

git is also available
https://romanzolotarev.com/git/

see also
https://gameoftrees.org/gotwebd.8.html
https://romanzolotarev.com/ssg/
#gameoftrees
#runbsd
#openbsd
#httpd

If you want to serve a static webpage from a #git repository, #Apache #httpd can do this. So I build a #Docker container that extends official image by git client and a shell script, that clones/updates content from a given repo. Every five minutes script updates content and there is also a #Helm chart, to deploy container to a #Kubernetes cluster.

Docker container:
https://hub.docker.com/r/starwitorg/httpd-git

Helm chart: https://hub.docker.com/r/starwitorg/httpd-git-chart

Source code:
https://github.com/starwit/httpd-chart

Huge kudos to everyone who worked, and still works, on #httpd. Went down the rabbit hole reading about it and found some seriously impressive engineering.

#linux

What now?! Oh, various #LetsEncrypt failures. Ah, right, have to run my configuration management twice due to some chicken-and-egg situations with #ACMEClient and #httpd #relayd.

That should do it, ri- Ah! Nope, turns out I was using a self-built #ddclient package due the #OpenBSD port & package being outdated and not supporting my #DNS provider.

Of course, my OpenBSD dev VM is running -current. Fine, I'll have to submit a patch to ports@ anyway. Then I'll have to backport to 7.8-stable... 2/2

My website and Gemini capsule are now running on an @OpenBSDAms VPS.

The OpenBSD way of having httpd web server chroots under /var/www/htdocs is really neat.

I'm doing the same for my Gemini capsule under /var/gemini. The gmid Gemini server, available in the OpenBSD package repos, sets this up for you with a _gmid user/group.

#BSD #OpenBSD #GeminiProtocol #httpd

Wanna debug #apache #httpd? Stop it and then:

`sudo apache2ctl -X -c 'LogLevel trace6' -c 'ErrorLog "| /bin/cat"'`

Edit: bu, still most of the data ends up in the error log file anyways :(

#SysAdmin #HomeLab

Nginx vs Apache: Nginx brilla en alto rendimiento y manejo eficiente de conexiones; Apache destaca por su flexibilidad y módulos potentes. Ambos son pilares del web, y la elección depende de tus necesidades. ¿Velocidad o versatilidad? ⚔️

#Nginx #Apache #HTTPD #DevOps #SysAdmin #WebServers

https://blog.odicforcesounds.com/openSecurity.html
#OpenBSD #Tribute #Blog #HTTPD #RELAYD #PF #Firewall #Security #Review #Test #Monkey

Playing with Server Side Includes (https://en.wikipedia.org/wiki/Server_Side_Includes) in #Apache #httpd and considering their #Turing completeness potential. I mean, Apache version is quire involved, especially in regards to the expression syntax (https://httpd.apache.org/docs/current/expr.html). But hey, what fun is there in using a ready-made language Apache provides? I want to use something sooooooo primitive that all implementations of SSI (#NodeJS, #Nginx, Apache, potentially my own impl) support. Basic vars, simple control flow, mere (in)equality expressions. Gonna be fun and might end up on my blog build setup.

#theWorkshop

@seabass @neil Yes and no.

• Most OSes these days don't allow incoming connections at random and no reasonable software should expose i.e. servers on the network.

• Even #WebDevelopers wanting to have a #httpd or #ngnix on the go will bind that to the loopbackinterface.

The few applications that don't do that have no reason to exist and are inherently #ITsec issues.

• Again: If one can configure stuff to be bound to a specific #VPN then they also can plug that risk as well.

Most corporations use VPNs to fullfill ITsec requirements ranging from #PCIDSS to #HIPAA and from #GDPR to #BDSG as well as protect against #CorporateEspionage and #Hacking by literally only allowing #eMail access through the corporate VPN or #LAN.

• But that's a different story, espechally for travelling consultants that have to access resources remote whilst in #cyberfascist juristictions (i.e. #USA & "P.R." #China)...

@cks

Early results are not promising. I've had a handful of HEAD requests in the past day. Only 2 appear legitimate, in that they hit genuine page URLs. The others were attempts to exploit WordPress vulnerabilities.

#HTTP #httpd #GoogleBot #djbwares #WordPress

@cks

It makes me think that there's one well-behaved 'bot drowned in a sea of ill-behaved ones.

I'm just instrumenting #djbwares httpd to log GET and HEAD differently. I wonder what I'll see.

#HTTP #httpd #GoogleBot

Updated my httpd.rocks guide with a small section about implementing Basic HTTP Authentication:

https://httpd.rocks/#http-basic-authentication

#httpd #openbsd #http

@cks

Is it doing straightforward GETs? Or is it doing HEAD? Or using If-Modified-Since?

#HTTP #GoogleBot #httpd

Why the heck does #Apache #httpd terminate upon receiving SIGWINCH?

This is rather inconvenient when running it from a terminal window. It'll terminate if the window is resized!

How to deploy a #Mojolicious web app to shared web hosting with Apache and CGI?

I’m having problems configuring ".htaccess" so that all pages are transparently handled by myapp.pl as a CGI script without revealing the CGI path and without breaking links in the app.

See here for details:
https://serverfault.com/questions/1190950/setup-mojolicious-app-transparently-via-cgi-with-apache-mod-rewrite

#httpd #ApacheHttpd #CGI #Perl

#lighttpd 1.4.80 has been released (#http / #https / #httpd / #Web / #Webserver) https://lighttpd.net/