HTTP/1.1 200 OK Date: Sat, 11 Feb 2012 15:51:53 GMT Server: Apache Content-Length: 0 Connection: close Content-Type: text/html; charset=UTF-8

Advanced WordPress wp-config.php Tweaks

The bottom line for this article is that I want to make WordPress as fast, secure, and easy to install, run, and manage because I am using it more and more for client production sites, I will work for days in order to solve an issue so that I never have to spend time on that issue again. Time is money in this industry and that is ultimately (time) what there is to gain by tweaking WordPress.

Note: I spent no time on readability, this is primarily a read the code and figure it out article.. This is for advanced users looking for a reference or discussion and for those of you looking to advance. Feedback would be great if you make it that far..

Posted in WordPress | Published on March 3, 2010 |6 Comments »

PortaPutty Auto-Reconnecting SSH Tunnels on an Encrypted TrueCrypt Portable USB Key w GPG

Ok I just came back up to write the intro.. I'm trying to keep it short to avoid getting bogged down by the coolness of each step. Here is what goes on. When I logon to my XP machine at work, I bring my usb key and plug it in first. On logging a window pops up first and it's a password prompt to mount my encrypted drive leonardo. It also checks a keyfile that is located on my usb key, but all I do now is type in my password. That causes my encrypted folder to be accessible to me like a normal drive, and it autoruns a startup batch file.

The batch file causes Portable versions of Firefox (all my bookmarks, my settings) to load, and launches Portable Mozilla Thunderbird (IMAP makes this work well), which is my favorite program (great GPG features and open-source!). Also Some Adobe CS4 software is loaded from the hard drive, like DreamWeaver. In the background, a service we created executes a PortaPuttY plink command to create forwarded tunnels from various remote servers and accounts, all using key-based encryption. These tunnels are automatically reconnected if they are disconnected, meaning you can use a socks 5 if you want or even better!

Part 1 of 5

Posted in Hacking | Published on February 23, 2010 |8 Comments »

Firefox Add-ons for Web Developers

Advanced Web Development by AskApache is a Firefox Collection I created since I'm always trying new Addons out and using multiple computers and I wanted a quick and easy way to install my favorite's and keep a running list. Firebug, YSlow, LastPass, and Web Developer are the only ones I always use regularly.

I like the idea of the last.fm but it's not as powerful as the site, which is awesome. Lately listening to Kings of Leon Radio...

Posted in Hacking | Published on October 18, 2009 |4 Comments »

The Right to Read

The proponents of this scheme have given it names such as "trusted computing" and "palladium". We call it "treacherous computing", because the effect is to make your computer obey companies instead of you. This was implemented in 2007 as part of Windows Vista; we expect Apple to do something similar. In this scheme, it is the manufacturer that keeps the secret code, but the FBI would have little trouble getting it.

Posted in Hacking | Published on July 20, 2009 |4 Comments »

COMPUTER SECURITY TOOLBOX

List of mainly obscure security software geared more for the master pentester. These are mostly for unix, bsd, and mac and many are difficult to install and setup (require custom servers, inside access points, obscure libraries). Only programs that output data are included, so no actual exploits or anything. Most of these output extremely useful albeit extremely technical information.

Posted in Security | Published on September 26, 2008 |3 Comments »

Encrypted WordPress / phpBB Backups

Enter your DOMAIN_ROOT and the location of your wp-config.php or config.php, and this script finds all the mysql settings by parsing the phpbb or wordpress config file, then creates GPG encrypted backups, and saves your settings for future automation.

Posted in Shell Scripting | Published on August 4, 2008 |3 Comments »

Apache SSL in htaccess examples

SSLOptions +StrictRequire
SSLRequireSSL
SSLRequire %{HTTP_HOST} eq "google.com"
ErrorDocument 403 https://google.com

Some of the Ins and Outs of using SSL Connections with Apache.

Posted in Htaccess | Published on March 29, 2008 |20 Comments »

Update: AskApache Password Protect Plugin

WordPress plugin gives you control over HTTP Basic Authentication for your WordPress blog which among other things, stops most automated hacking attempts and exploits being attempted, cutting down on the number of requests, connections, and mysql queries for all WordPress blogs on the Internet.

Posted in WordPress | Published on February 7, 2008 |14 Comments »

WordPress Plugin for Apache .htaccess Security

gzip's previous .htaccess file and sends it as an attachment to the logged in users email account along with password user setup.
Now also works for sites running on SSL (PHP version >4.3.0)
Rewrote the security module code in the form of snort, nessus, and mod_security rules and signatures
Added a *real* check to see if mod_rewrite is installed
Added Modules that remove directoryindexes
Much more on the way..

Posted in WordPress | Published on January 1, 2008 |1 Comment »

Online JavaScript Compressor, Obfuscator, Pretty Printer

Google Code Closure Compiler

The Google Closure Compiler is a tool for making JavaScript download and run faster. It is a true compiler for JavaScript. Instead of compiling from a source language to machine code, it compiles from JavaScript to better JavaScript. It parses your JavaScript, analyzes it, removes dead code and rewrites and minimizes what's left. It also checks … Read the rest

Posted in | Published on October 9, 2007 |Comments Off

.htpasswd file Generator

.htpasswd is a flat-file used by Apache and other applications to store usernames and password for HTTP authentication. Apache .htpasswd files may contain multiple types of passwords; some may have MD5-encrypted passwords while others in the same file may have passwords encrypted with crypt(3) and/or SHA-1. Usernames are limited to 255 bytes and may not include the character :.… Read the rest

Posted in | Published on October 3, 2007 |No Comments »

Troubleshooting Apache .htaccess Authentication

Apache Web Server users have problems getting Apache Authentication/password-protection in htaccess working, this is a troubleshooting guide to get Password Protection working!

Posted in Htaccess | Published on August 18, 2007 |3 Comments »

Want to know how to really hack?

An interesting post by a computer hacker explaining how to really hack.

Posted in Hacking | Published on July 22, 2007 |8 Comments »

Vulnerability Scanners Review

A few months back I did some intense testing of all the best vulnerability scanners out there.. I had a couple unix boxes hooked up, as well as some windows machines, and figured I could add clients to a "once-a-week" scanning contract. So naturally, I wanted to use the scanner that was the best for my purpose.

You might be … Read the rest

Posted in Hacking | Published on December 30, 2006 |30 Comments »

Web Development Glossary

Web Development / Webmaster Glossary

A | B | C | D | E | F | G | H | I | L | M | N | O | P | R | S | T | U | V | W | X | Z | other glossaries

This glossary defines some of the common terminology related … Read the rest

Posted in | Published on November 19, 2006 |No Comments »

Search Feed
Comments Feed

Search For encryption