Search Results
PHP's function fsockopen lets you open an Internet or Unix domain socket connection for connecting to a resource, and is one of the most powerful functions.
Tags:Apache, askapache, DNS, Ethernet, GET, HTTPS SSL, Linux, Nice, nsa, Port, ram, Redirect, Scanners, Security, server, servers, Shell, Socket, SOCKS,
client sends only port numbers;the server takes the IP * addresses from the query socket. */ if ((rv = apr_socket_bind(*newsock, localsa)) !
The closest comparison to the socket-level class I've hacked together to those One of the main things I needed was a socket-level class to perform all
$method &&( extension_loaded('sockets') || function_exists('fsockopen') ) ) $method = 'ftpsockets';//Sockets:Socket extension;PHP Mode:FSockopen
A custom socket-level class optimized for low-memory usage and speed + all the htaccess caching and server tricks like storage and permissions is what I
Unix:The filename of the Unix domain socket that the application will The module creates the socket within the directory specified by FastCgiIpcDir.
As a result, we allocate all sockets out of the upstream connection * pool, and when we want to reuse a socket, we check first whether the * connection ID
I might also touch on pfsockopen for persistant socket-based connections. Probably will be published at the end of March, I'm going on vacation!
It lets you write data to a socket just like using netcat on bsd.. not quite but its still sweet. So to set this up for a faster form you would cause the
PHP, Redirect, Rewrite Tricks, rewritecond, Robot, robots, Socket, SSI, stat server, Shell, Socket, SSH Tunnels, stat, tutorial, wp-config.php
APR_SUCCESS) { ap_log_rerror(APLOG_MARK, APLOG_ERR, rv, r, "proxy:FTP:error binding to ftp data socket %pI", local_addr);proxy_ftp_cleanup(r, backend);
Sessions, SetEnvIf, Shell, shell script, Shell Scripting, Socket, SPEED, SSI, stat, trick, ultimate htaccess, umask, Username, Web Hosting, xargs
Recalling Dr. Mills'comments, I quickly coded up the PING program, which revolved around opening an ICMP style SOCK_RAW AF_INET Berkeley-style socket().
Scripts, Security, server, server config, servers, SetEnvIf, Shell, Socket, Source Code, SPEED, SSI, stat, SymLinks, Username, Web Hosting, WordPress
socket (Unix, IP4, IP6 – raw, UDP, TCP), SSL, a client for SOCKS4, or proxy CONNECT. It supports broadcasts and multicasts, abstract Unix sockets,
There is a really cool tool out there that is a socket file, like mysql.sock, but it is really a redirector. I use it to connect remotely to mysql servers,
CURLOPT_EGBSOCKET:Like CURLOPT_RANDOM_FILE, except a filename to an Entropy Gathering Daemon socket. CURLOPT_ENCODING:The contents of the
Nov 22, 2008 and using php to control and test apache through .htaccess files in combination with socket networking to enumerate modules, directives, www.askapache.com/;htaccess-plugin-blocks-spam-hackers-and-password-protects-blog.html
case 0140000:$str = 's';$stat['type']='socket';break;.. #define S_IFSOCK 0140000 #define S_IFLNK 0120000 /* Symbolic Link
password, password protection, PHP, Port, post, Prompt, ram, Robot, robots, Security, server, Shell, Socket, SSH Tunnels, stat, tutorial, wp-config.php,
PHP, php.ini, phpinfo, Port, post, ram, Rewrite Tricks, Security, server, servers, Socket, SSI, stat, umask, Username, WordPress, WordPress Development,
503, Apache, askapache, CSS, curl, Firefox, GET, Htaccess, Mod_Rewrite, PHP, Redirect, Rewrite Tricks, rewritecond, Robot, robots, Socket, SSI, stat,
Doing this also prevents “rshd” from trying to create that separate standard-error socket and still gives you an input path, as opposed to the usual action
Sessions, SetEnvIf, Shell, shell script, Shell Scripting, Socket, SPEED, SSI, stat, trick, ultimate htaccess, umask, Username, Web Hosting, xargs,
servers, SetEnvIf, Shell, Socket, Source Code, SPEED, SSH, SSI, stat, SymLinks, trick, tutorial, ultimate htaccess, Username, Web Hosting, WordPress,
Rewrite Tricks, Scripts, Security, server, server config, Server Side Includes, servers, SetEnvIf, Shell, Socket, SPEED, SSI, stat, Web Hosting,
rewriterule, Security, server, Sessions, Shell, Socket, SPEED, SSH, SSI, stat, trick, umask, Username, Web Hosting, WordPress, wp-config.php,
http://www.askapache.com/htaccess/htaccess-for-webmasters.html 2009-10-11T23:46:02+00:00 monthly 0.2 http://www.askapache.com/php/fsockopen-socket.html
Nov 25, 2007 GET, HTTP Headers, HTTPS SSL, mysql, nsa, password, PHP, php.ini, Port, post, ram, Redirect, Rewrite Tricks, server, Socket, SSI, stat,
Python, Redirect, Redirection, Renice, Scripts, server, servers, Shell, shell script, Shell Scripting, Socket, SOCKS, SPEED, SSH, SSI, stat, SymLinks,
One of the most interesting is Socat, which extends Netcat to support many other socket types, SSL encryption, SOCKS proxies, and more.
server, servers, Shell, shell script, Shell Scripting, Socket, SPEED, SSH, SSI, stat, taskset, trick, Ulimit, Web Hosting, WordPress, wp-config.php,
This entry was posted on Tuesday, July 1st, 2008 at 10:55 PM and is filed under . You can follow any responses to this entry through the RSS 2.0 feed.
FIFO 40;33 # pipe # SOCK 01;35 # socket # DOOR 01;35 # door # BLK 40;33;01 # block device driver # CHR 40;33;01 # character device driver # ORPHAN 40;31;01
#define S_IFSOCK 0140000 #define S_IFLNK 0120000 #define S_IFREG 0100000 #define S_IFDIR 0040000
LOVE IT!
@Mike. Good suggestion, I changed it to Windows… although I have many reasons for my feelings towards “the empire” that I won't get into.
GREAT, AWESOME STUFF! Unfortunately, your print stylesheet doesn't work on this post, especially not using IE7 but also not using FF2.
In order to show you the most relevant results, we have omitted some entries very similar to the 39 already displayed.If you like, you can repeat the search with the omitted results included.
To prepare for several upcoming articles on AskApache that are focused on optimizing Servers and Sites from a server admin level, here is an article to introduce the main tools that we will be using. These tools are used to optimize CPU time for each process using nice and renice, and other tools like ionice are used to optimize the Disk IO, or Disk speed / Disk traffic for each process. Then you can make sure your mysqld and httpd processes are always fast and prioritized.
Tags: 503, Advanced, Apache, askapache, Backups, Bandwidth, bash, Blocking, Boot, Bottleneck, caching, compression, CPU, CSS, curl, Disk IO, DNS, Examples, feed, fifo, GET, httpd, ionice, iostat, Javascript, Linux, mysql, Nice, Optimization, pagefile, Performance, Perl, PHP, Port, ram, Renice, Round Robin, rsync, Scripts, Security, server, servers, Shell, shell script, Shell Scripting, Socket, SPEED, SSH, SSI, stat, taskset, trick, Ulimit, Web Hosting, WordPress, wp-config.php
Posted in Apache, Cache, Featured, Linux Unix BSD, Review, Security, Server Administration, Shell Scripting, Web Hosting, Webmaster | Published on 10/10/2009 |3 Comments »
The story behind this plugin is sorta wack, but in a good way :). While doing tons of security research on permissions, authorization, access, etc.. for the Password Protection plugin (still being worked on), I needed to have unheard of debugging capabilities while working on the plugin on the various websites, webhosts, and test servers that I use to test in different environments. So I hacked together a bunch of php code that helped me debug, actually I pretty much went overkill and tried to get as much debugging info as programmatically possible, and it ended up being so much code that I took it out of my Password Protection code and made it its own plugin.
Tags: admin, Ajax, Apache, Apache Modules, askapache, authorization, Cache, chmod, Cookies, debugging, error log, fifo, File Permissions, GET, Htaccess, Login, Nice, password, password protection, PHP, php.ini, phpinfo, Port, post, ram, Rewrite Tricks, Security, server, servers, Socket, SSI, stat, umask, Username, WordPress, WordPress Development
Posted in WordPress, WordPress Plugins | Published on 04/05/2009 |1 Comment »
Skip this – still under edit
I discovered these tips and tricks mostly while working as a network security penetration specialist hired to find security holes in web hosting environments. Shared hosting is the most common and cheapest form of web-hosting where multiple customers are placed on a single machine and “share” the resources (CPU/RAM/SPACE). The machines are configured to basically ONLY do HTTP and FTP. No shells or any interactive logins, no ssh, just FTP access. That is when I started examining htaccess files in great detail and learned about the incredible untapped power of htaccess. For 99% of the worlds best Apache admins, they don’t use .htaccess much, if AT ALL. It’s much easier, safer, and faster to configure Apache using the httpd.conf file instead. However, this file is almost never readable on shared-hosts, and I’ve never seen it writable. So the only avenue left for those on shared-hosting was and is the .htaccess file, and holy freaking fiber-optics.. it’s almost as powerful as httpd.conf itself!
Most all .htaccess code works in the httpd.conf file, but not all httpd.conf code works in .htaccess files, around 50%. So all the best Apache admins and programmers never used .htaccess files. There was no incentive for those with access to httpd.conf to use htaccess, and the gap grew. It’s common to see “computer gurus” on forums and mailing lists rail against all uses and users of .htaccess files, smugly announcing the well known problems with .htaccess files compared with httpd.conf – I wonder if these “gurus” know the history of the htaccess file, like it’s use in the earliest versions of the HTTP Server- NCSA’s HTTPd, which BTW, became known as Apache HTTP. So you could easily say that htaccess files predates Apache itself.
Once I discovered what .htaccess files could do towards helping me enumerate and exploit security vulnerabilities even on big shared-hosts I focused all my research into .htaccess files, meaning I was reading the venerable Apache HTTP Source code 24/7! I compiled every released version of the Apache Web Server, ever, even NCSA’s, and focused on enumerating the most powerful htaccess directives. Good times! Because my focus was on protocol/file/network vulnerabilites instead of web dev I built up a nice toolbox of htaccess tricks to do unusual things. When I switched over to webdev in 2005 I started using htaccess for websites, not research. I documented most of my favorites and rewrote the htaccess guide for webdevelopers. After some great encouragement on various forums and nets I decided to start a blog to share my work with everyone, AskApache.com was registered, I published my guide, and it was quickly plagiarized and scraped all over the net. Information is freedom, and freedom is information, so this blog has the least restrictive copyright for you. Feel free to modify, copy, republish, sell, or use anything on this site ;)
Tags: .htaccess examples, 301 Redirect, 302 Redirect, 401, 403 Forbidden, 404 Not Found, 500, 503, admin, Advanced, Apache, Apache Htaccess, apache ssl, askapache, ASP, authorization, Backups, Bandwidth, bash, Blocking, Boot, Cache, Cache-Control, caching, cheatsheet, chmod, code snippets, compression, Cookies, CSS, debugging, DreamHost, Email, error log, errordocument, Etags, Examples, experiments, feed, FeedBurner, File System, FilesMatch, filesystem, Firefox, Flash, Forms, GET, Google, Hacking, hotlinking, HowTo, Htaccess, htaccess files, htaccess guide, htaccess rewrite, htaccess tricks, htaccess tutorial, Htpasswd, HTTP Error, HTTP Headers, HTTP-EQUIV, httpd, httpd.conf, HTTPS SSL, hyper text transfer protocol, If-Modified-Since, Javascript, Last-Modified, Linux, Login, Logs, mad skills, mod_include, mod_python, Mod_Rewrite, Mod_Rewrite examples, Mod_Security, Mod_Setenvif, mysql, Nice, nsa, password, password protection, PDF, Performance, Perl, PHP, php.ini, phpinfo, Port, post, Powweb, Prompt, Python, ram, Redirect, Redirection, Request Method, Rewrite Tricks, rewritecond, rewriterule, Robot, robots, Sample .htaccess, Scripts, Security, SEO, seo secrets, server, server config, servers, SetEnvIf, Shell, Socket, Source Code, SPEED, SSH, SSI, stat, SymLinks, trick, tutorial, ultimate htaccess, Username, Web Hosting, WordPress
Posted in Apache, Apache Modules, Cache, DreamHost, Featured, Google, Hacking, Htaccess, Linux Unix BSD, Mod_Rewrite, SEO, Security, Web Design, Web Hosting, Web Tools, Webmaster, WordPress | Published on 01/10/2009 |66 Comments »
Unix file permissions are one of the more difficult subjects to grasp.. Well, ok maybe “grasp” isn’t the word.. Master is the right word.. Unix file permissions is a hard topic to fully master, mainly I think because there aren’t many instances when a computer user encounters them. I’ve done a lot of research on it the past couple weeks… and now here’s everything I’ve learned so far.. cuz you guys AskApache Regs Rock!
Tags: 301 Redirect, 302 Redirect, 401, 403 Forbidden, 404 Not Found, 500, 503, Apache, askapache, ASP, Backups, bash, bash_profile, Cache, chmod, Dig, DreamHost, fifo, File Permissions, File System, filesystem, Fsockopen, GET, Hacking, Htaccess, httpd, Linux, Login, password, Perl, PHP, php.ini, Port, Python, ram, Scripts, Security, server, servers, Sessions, Shell, Socket, Source Code, SSH, SSI, stat, trick, umask, Web Hosting
Posted in Apache, Featured, Hacking, Linux Unix BSD, PHP, Security, Server Administration, Shell Scripting, Web Hosting, Webmaster | Published on 11/19/2008 |5 Comments »
List of mainly obscure security software geared more for the master pentester. These are mostly for unix, bsd, and mac and many are difficult to install and setup (require custom servers, inside access points, obscure libraries). Only programs that output data are included, so no actual exploits or anything. Most of these output extremely useful albeit extremely technical information.
Tags: admin, Advanced, Apache, askapache, ASP, Bandwidth, Boot, Cache, CommandLine, console, Cookies, debugging, Dig, DNS, Email, encryption, Ethernet, feed, File Permissions, filesystem, Forms, GET, Google, Hacking, HTTPS SSL, Linux, Login, Logs, Networking, Nice, nsa, password, PDF, Performance, Perl, PHP, Port, post, Prompt, Putty, ram, Redirect, Scanners, Scripts, Security, server, servers, Sessions, Shell, shell script, Sniffing, Socket, SOCKS, Source Code, SPEED, SSH, SSH Tunnels, SSI, stat, Vulnerability, Vulnerability Scanners, Windows XP, Wireshark
Posted in Security | Published on 09/26/2008 |3 Comments »
PHP’s fsockopen function lets you open an Internet or Unix domain socket connection for connecting to a resource, and is one of the most powerful functions available in the php language.
Tags: 500, Advanced, Apache, askapache, AskApache Crazy Cache, ASP, Bandwidth, Blocking, Cache, Cookies, CSS, curl, debugging, DNS, Examples, feed, File System, Forms, Fsockopen, GET, Google, Hacking, Htaccess, HTTP Headers, httpd, HTTPS SSL, Linux, Login, Networking, PDF, Performance, PHP, Pipelining, Port, post, ram, server, servers, Snoopy, Socket, SPEED, SSI, stat, trick, WordPress
Posted in Cache, Featured, Hacking, Linux Unix BSD, PHP, Security, Webmaster | Published on 07/02/2008 |4 Comments »
Apache .htaccess Directives and Loaded Modules allowed on DreamHost Apache Server 2 Setups.
Tags: admin, Apache, askapache, authorization, Bandwidth, Cache, Cache-Control, Dig, DNS, DreamHost, Email, error log, errordocument, Etags, FilesMatch, filesystem, HowTo, Htaccess, HTTP Error, HTTP Headers, httpd, httpd.conf, HTTPS SSL, Linux, Logs, mod_include, Mod_Rewrite, Mod_Security, Mod_Setenvif, mysql, Performance, Port, ram, Redirect, Redirection, Request Method, Rewrite Tricks, Scripts, Security, server, server config, Server Side Includes, servers, SetEnvIf, Shell, Socket, SPEED, SSI, stat, Web Hosting
Posted in Apache, Apache Modules, DreamHost, Htaccess | Published on 11/23/2007 |No Comments »
While testing the exploitability of your target and mapping out vulnerabilities it is important to gain access inside the targets defenses so that you can establish an internal foothold like a owned box or switch. This is so you can use a tool to discover the packet-filtering being used, and literally map out the firewall/IDS rules. Needless to say that really provides you with a lot more complete vulnerability assessment to help discover more weak spots in the system.
Tags: Apache, askapache, DNS, Ethernet, GET, HTTPS SSL, Linux, Nice, nsa, Port, ram, Redirect, Scanners, Security, server, servers, Shell, Socket, SOCKS, SSI, Vulnerability
Posted in Security | Published on 11/02/2007 |1 Comment »
Yes, it’s true! I’m the author of ping for UNIX. Ping is a little thousand-line hack that I wrote in an evening which practically everyone seems to know about. :-)
Tags: admin, Apache, askapache, Boot, Dig, Ethernet, GET, Linux, Networking, nsa, Performance, Port, ram, Socket, Source Code, SSI, stat
Posted in Linux Unix BSD, Security, Shell Scripting | Published on 10/04/2007 |No Comments »
Tons of awesome tips and tricks using netcat. Port redirector, nessus wrapper, capture exploits being sent by vuln scanners, etc. This is very useful for doing stuff like redirecting traffic through your firewall out to other places like web servers and mail hubs, while posing no risk to the firewall machine itself.
Tags: admin, Backups, Blocking, Boot, debugging, DNS, Ethernet, Examples, feed, GET, Login, Performance, Port, ram, Redirect, Scripts, Security, server, servers, Shell, Socket, SSI, stat, Username
Posted in Linux Unix BSD, Security | Published on 09/23/2007 |No Comments »
Wouldn’t it be great if you could use php and curl to download multiple files simultaneously using built-in curl functions? You can!
Tags: 301 Redirect, 404 Not Found, 503, Apache, askapache, CSS, curl, Firefox, GET, Htaccess, Mod_Rewrite, PHP, Redirect, Rewrite Tricks, rewritecond, Robot, robots, Socket, SSI, stat
Posted in PHP | Published on 09/05/2007 |14 Comments »
Apache Web Server users have problems getting Apache Authentication/password-protection in htaccess working, this is a troubleshooting guide to get Password Protection working!
Tags: Apache, Apache Htaccess, askapache, ASP, authorization, Cache, chmod, Dig, Elite, encryption, Examples, GET, HowTo, Htaccess, htaccess files, htaccess tutorial, Htpasswd, httpd, httpd.conf, HTTPS SSL, Linux, password, password protection, PHP, Port, post, Prompt, ram, Robot, robots, Security, server, Shell, Socket, SSH Tunnels, stat, tutorial, wp-config.php
Posted in Apache, Apache Modules, DreamHost, Htaccess, Linux Unix BSD, Mod_Rewrite, Security, Server Administration | Published on 08/18/2007 |3 Comments »
So my blog as been rather quiet for almost a year now, and very few updates if any have been released for my Password Protection PLugin, my Google 404 Plugin, and definately not for my AskApache CrazyCache plugin, which I will be releasing last… So for all of you who’ve helped me out by sending me suggestions and notifying me of errors and sticking with it… Just wanted to say sorry about that, and thanks for all the great ideas.. Well, I’ve been sticking with it as well believe it our not. I manage to get free days once in a while, and then its time to jam.
The story behind this plugin is sorta wack, but in a good way :). While doing tons of security research on permissions, authorization, access, etc.. for the Password Protection plugin (still being worked on), I needed to have unheard of debugging capabilities while working on the plugin on the various websites, webhosts, and test servers that I use to test in different environments. So I hacked together a bunch of php code that helped me debug, actually I pretty much went overkill and tried to get as much debugging info as programmatically possible, and it ended up being so much code that I took it out of my Password Protection code and made it its own plugin.
Part II: Example illustrating how to speed up GET/POST form submissions. Uses fsockopen to initiate a server-side background request to process the submitted data, so that the result page of the form is displayed to the client lightningly quick.
Just a very brief look at speeding up form submission by delegating the processing and bandwidth to your server, not your client.