Category Archives: apache

Allowing or Blocking based on Country with .htaccess

October 5, 2009 – 3:16 pm

Examples
Redirection with mod_geoip and mod_rewrite
Below are examples of how to perform redirection based on country with mod_geoip and mod_rewrite. This configuration should be added to your Apache httpd.conf or .htaccess file.

GeoIPEnable On
GeoIPDBFile /path/to/GeoIP.dat

# Redirect one country
RewriteEngine on
RewriteCond %{ENV:GEOIP_COUNTRY_CODE} ^CA$
RewriteRule ^(.*)$ http://www.canada.com$1 [L]

# Redirect multiple countries to a single page
RewriteEngine on
RewriteCond %{ENV:GEOIP_COUNTRY_CODE} ^(CA|US|MX)$
RewriteRule ^(.*)$ http://www.northamerica.com$1 [L]
By Fastserve | Also posted in SEO, htaccess, htaccess rewrite, httpd, security | Leave a Comment

X-Content-Type-Options: nosniff header

September 22, 2009 – 3:02 pm

Over the past two months, we’ve received significant community feedback that using a new attribute on the Content-Type header would create a deployment headache for server operators. To that end, we have converted this option into a full-fledged HTTP response header. Sending the new X-Content-Type-Options response header with the value nosniff will prevent Internet Explorer from MIME-sniffing a response away from the declared content-type.

For example, given the following HTTP-response:

HTTP/1.1 200 OK
Content-Length: 108
Date: Thu, 26 Jun 2008 22:06:28 GMT
Content-Type: text/plain;
X-Content-Type-Options: nosniff

This page renders as HTML source code (text) in IE8.

By Fastserve | Also posted in WebHosting, guide, htaccess, htaccess rewrite | Leave a Comment

Proxy Authentication with Squid

April 4, 2009 – 8:12 pm

Users will be authenticated if squid is configured to use proxy_auth ACLs.

Browsers send the user’s authentication credentials in the Authorization request header.

If Squid gets a request and the http_access rule list gets to a proxy_auth ACL, Squid looks for the Authorization header. If the header is present, Squid decodes it and extracts a username and password.

If the header is missing, Squid returns an HTTP reply with status 407 (Proxy Authentication Required). The user agent (browser) receives the 407 reply and then prompts the user to enter a name and password. The name and password are encoded, and sent in the Authorization header for subsequent requests to the proxy. Also see this example Authorization Header from .htaccess files.

NOTE: The name and password are encoded using “base64″ (See section 11.1 of RFC 2616). However, base64 is a binary-to-text encoding only, it does NOT encrypt the information it encodes. This means that the username and password are essentially “cleartext” between the browser and the proxy. Therefore, you probably should not use the same username and password that you would use for your account login.

By Fastserve | Also posted in WebHosting, htaccess, httpd | Leave a Comment

List of .htaccess Examples

March 4, 2009 – 8:08 pm

From the .htaccess cheatsheet

By Fastserve | Also posted in SEO, htaccess, htaccess rewrite, security, wordpress | Comments (1)

Advanced mod_rewrite Expert Tricks

March 1, 2009 – 4:05 pm

Most if not all web developers and server administrators struggle with Apache mod_rewrite. It’s very tough and only gets a little easier with practice. Until Now! Get ready to explode your learning curve,…. The following undocumented techniques and methods will allow you to utilize mod_rewrite at an “expert level” by showing you how to unlock its secrets.

By Fastserve | Also posted in htaccess, htaccess rewrite | Leave a Comment

Running CherryPy behind Apache using mod_rewrite

October 26, 2008 – 4:36 pm

Here are some myths about running CherryPy behind mod_rewrite:

Myth 1: using mod_rewrite will make my site slower
If you’re talking about raw HTTP speed then yes, using mod_rewrite does add a little bit of overhead. On my current laptop, a benchmark of CherryPy exposed gave 460 requests/second (2.2ms/req), and a benchmark of CherryPy running behind Apache [...]

By Fastserve | Also posted in htaccess, htaccess rewrite | Leave a Comment

The Camping Server for Apache + FastCGI

October 26, 2008 – 1:10 am

FastCGI .htaccess

This is a basic FastCGI .htaccess file. The last line is the most important.

AddHandler fastcgi-script .fcgi 

Options +FollowSymLinks +ExecCGI  

RewriteEngine On
RewriteRule ^$ index.html [QSA]
RewriteRule ^([^.]+)$ $1.html [QSA]
RewriteCond %{REQUEST_FILENAME} !-f
RewriteRule ^(.*)$ dispatch.fcgi/$1 [QSA,L]
By Fastserve | Also posted in Ruby, SEO, WebHosting, htaccess, htaccess rewrite | Leave a Comment

Setup Zope behind Apache with SSL

September 25, 2008 – 2:26 am

Accessing CGI environment variables created by mod_ssl from within Plone
This way you will get HTTP_SSL_CLIENT_VERIFY, HTTP_SSL_CLIENT_S_DN_CN and HTTP_SSL_CLIENT_S_DN_Email environment variables in the request object.
Posted by mustapha
Problem:
You need to setup Zope behind Apache with SSL and you need to access some/all of the CGI environment variables set by the mod_ssl from within Plone. How to do [...]

By Fastserve | Also posted in WebHosting, htaccess, htaccess rewrite | Leave a Comment

Generate and User your own SSL Key in Apache

September 20, 2008 – 9:48 am

Do It Yourself SSL Guide
By Stephen Philbin
There are many people who want or need to have the connection between the browser and the Web server encrypted, but haven’t been able to set it up. This guide is intended to help people with the typical Apache on Linux setup to make encrypted connections available with [...]

By Fastserve | Also posted in WebHosting, htaccess | Comments (1)

More .htaccess

September 13, 2008 – 5:40 pm

1. Introduction to .htaccess files
2. FileTypes
3. Handlers
4. URL Rewriting
5. User authentication
6. Host-based access control
7. Directory indexing

By Fastserve | Also posted in htaccess, htaccess rewrite | Comments (1)