Search For mod

Search Results

Htaccess SetEnvIf and SetEnvIfNoCase Examples - AskApache

Unique mod_setenvif Variables. These can be used for attribute . Populates HTTP_MY_ Variables with mod_setenvif variable values

HTTPS SSL

Linux, Logs, mod_include, Mod_Rewrite, Mod_Security, Mod_Setenvif, mysql, Performance, Port, ram, Redirect, Redirection, Request Method, Rewrite Tricks,

mod_setenvif.c - Colorized Apache mod_setenvif.c at AskApache

mod_setenvif.c Apache HTTPD Colorized Source Code for mod_setenvif.

Port

httpd.conf, HTTPS SSL, Javascript, Last-Modified, Linux, Login, Logs, Mod_Rewrite, Mod_Setenvif, mysql, Nice, password, Performance, Perl, PHP, php.ini,

htaccess directives available on Powweb - AskApache

when AllowOverride includes FileInfo;BrowserMatch (mod_setenvif.c):A browser regex and a list of variables. when AllowOverride includes FileInfo

stat

mod_include, Mod_Rewrite, Mod_Rewrite examples, Mod_Security, Mod_Setenvif, PHP, Port, post, ram, Redirect, Redirection, Rewrite Tricks, rewritecond,

mod_setenvif

mod_setenvif. mod_setenvif. By AskApache | Published 03/05/2009. mod_setenvif.c. This entry was posted in . Bookmark the permalink.

Skeleton .htaccess file for Powweb Hosting - AskApache

[L] ############################################## # MOD_SETENVIF VARIABLES # ############################################## SetEnvIfNoCase Remote_Host

Securing php.ini and php.cgi with .htaccess - AskApache

This is because mod_setenvif and mod_unique_id really need * to do their thing on internal redirects as well. Perhaps this is a * misnamed function.

Blocking Bad Bots and Scrapers with .htaccess - AskApache

change bad_web_bot to HTTP_SAFE_BADBOT to keep it suexec safe. Then you can test whether it's been set by using mod_rewrite, mod_headers, mod_setenvif, etc.

Apache Variable Fun in htaccess - AskApache

For additional flexibility, the directives provided by mod_setenvif allow environment variables to be set on a per-request basis, conditional on

Apache Directives and Modules on DreamHost - AskApache

Attack Prevention and just-in-time patching;mod_setenvif:Allows the setting of environment variables based on characteristics of the request

An AskApache Plugin Upgrade to Rule them All - AskApache

mod_negotiation, mod_proxy, mod_proxy_ajp, mod_proxy_balancer, mod_proxy_connect, mod_proxy_ftp, mod_proxy_http, mod_rewrite, mod_setenvif, mod_speling,

The Ultimate Htaccess - AskApache

Unique mod_setenvif Variables ·Populates HTTP_MY_ Variables with mod_setenvif variable values ·Allows only if HOST Header is present in request

AskApache Crazy Advanced Web Development

Unique mod_setenvif Variables ·Populates HTTP_MY_ Variables with mod_setenvif variable values ·Set REMOTE_HOST to HTTP_HOST ·Allows only if HOST Header

FastCGI on DreamHost - AskApache

To pass per-request environment variables to FastCGI applications, have a look at:mod_env (SetEnv, PassEnv, UnSetEnv), mod_setenvif (BrowserMatch,

In order to show you the most relevant results, we have omitted some entries very similar to the 16 already displayed.If you like, you can repeat the search with the omitted results included.

An AskApache Plugin Upgrade to Rule them All

So my blog as been rather quiet for almost a year now, and very few updates if any have been released for my Password Protection PLugin, my Google 404 Plugin, and definately not for my AskApache CrazyCache plugin, which I will be releasing last… So for all of you who’ve helped me out by sending me suggestions and notifying me of errors and sticking with it… Just wanted to say sorry about that, and thanks for all the great ideas.. Well, I’ve been sticking with it as well believe it our not. I manage to get free days once in a while, and then its time to jam.

Tags: 401, 404 Not Found, admin, Advanced, Apache, askapache, AskApache Google 404, AskApache Password Protection, ASP, authorization, bash, Cache, Cache-Control, chmod, compression, Cookies, debugging, Dig, Email, errordocument, Etags, Examples, FilesMatch, Fsockopen, GET, Google, Htaccess, htaccess files, htaccess tricks, HTTP Headers, httpd, HTTPS SSL, Javascript, Last-Modified, Logs, mod_include, Mod_Rewrite, Mod_Setenvif, Networking, Nice, password, password protection, Perl, PHP, Port, post, Python, ram, Redirect, Rewrite Tricks, rewritecond, rewriterule, Robot, robots, Scripts, Security, SEO, server, server config, servers, SetEnvIf, Shell, Socket, Source Code, SSH, SSI, stat, trick, Username, Web Hosting, Wireshark, WordPress, WordPress Plugins, WordPress Security
Posted in Apache, Apache Modules, Cache, Featured, Hacking, Htaccess, Linux Unix BSD, Mod_Rewrite, PHP, Security, Web Hosting, Web Tools, Webmaster, Windows, WordPress, WordPress Plugins | Published on 07/29/2009 |1 Comment »

The Ultimate Htaccess

Skip this – still under edit

I discovered these tips and tricks mostly while working as a network security penetration specialist hired to find security holes in web hosting environments. Shared hosting is the most common and cheapest form of web-hosting where multiple customers are placed on a single machine and “share” the resources (CPU/RAM/SPACE). The machines are configured to basically ONLY do HTTP and FTP. No shells or any interactive logins, no ssh, just FTP access. That is when I started examining htaccess files in great detail and learned about the incredible untapped power of htaccess. For 99% of the worlds best Apache admins, they don’t use .htaccess much, if AT ALL. It’s much easier, safer, and faster to configure Apache using the httpd.conf file instead. However, this file is almost never readable on shared-hosts, and I’ve never seen it writable. So the only avenue left for those on shared-hosting was and is the .htaccess file, and holy freaking fiber-optics.. it’s almost as powerful as httpd.conf itself!

Most all .htaccess code works in the httpd.conf file, but not all httpd.conf code works in .htaccess files, around 50%. So all the best Apache admins and programmers never used .htaccess files. There was no incentive for those with access to httpd.conf to use htaccess, and the gap grew. It’s common to see “computer gurus” on forums and mailing lists rail against all uses and users of .htaccess files, smugly announcing the well known problems with .htaccess files compared with httpd.conf – I wonder if these “gurus” know the history of the htaccess file, like it’s use in the earliest versions of the HTTP Server- NCSA’s HTTPd, which BTW, became known as Apache HTTP. So you could easily say that htaccess files predates Apache itself.

Once I discovered what .htaccess files could do towards helping me enumerate and exploit security vulnerabilities even on big shared-hosts I focused all my research into .htaccess files, meaning I was reading the venerable Apache HTTP Source code 24/7! I compiled every released version of the Apache Web Server, ever, even NCSA’s, and focused on enumerating the most powerful htaccess directives. Good times! Because my focus was on protocol/file/network vulnerabilites instead of web dev I built up a nice toolbox of htaccess tricks to do unusual things. When I switched over to webdev in 2005 I started using htaccess for websites, not research. I documented most of my favorites and rewrote the htaccess guide for webdevelopers. After some great encouragement on various forums and nets I decided to start a blog to share my work with everyone, AskApache.com was registered, I published my guide, and it was quickly plagiarized and scraped all over the net. Information is freedom, and freedom is information, so this blog has the least restrictive copyright for you. Feel free to modify, copy, republish, sell, or use anything on this site ;)

Tags: .htaccess examples, 301 Redirect, 302 Redirect, 401, 403 Forbidden, 404 Not Found, 500, 503, admin, Advanced, Apache, Apache Htaccess, apache ssl, askapache, ASP, authorization, Backups, Bandwidth, bash, Blocking, Boot, Cache, Cache-Control, caching, cheatsheet, chmod, code snippets, compression, Cookies, CSS, debugging, DreamHost, Email, error log, errordocument, Etags, Examples, experiments, feed, FeedBurner, File System, FilesMatch, filesystem, Firefox, Flash, Forms, GET, Google, Hacking, hotlinking, HowTo, Htaccess, htaccess files, htaccess guide, htaccess rewrite, htaccess tricks, htaccess tutorial, Htpasswd, HTTP Error, HTTP Headers, HTTP-EQUIV, httpd, httpd.conf, HTTPS SSL, hyper text transfer protocol, If-Modified-Since, Javascript, Last-Modified, Linux, Login, Logs, mad skills, mod_include, mod_python, Mod_Rewrite, Mod_Rewrite examples, Mod_Security, Mod_Setenvif, mysql, Nice, nsa, password, password protection, PDF, Performance, Perl, PHP, php.ini, phpinfo, Port, post, Powweb, Prompt, Python, ram, Redirect, Redirection, Request Method, Rewrite Tricks, rewritecond, rewriterule, Robot, robots, Sample .htaccess, Scripts, Security, SEO, seo secrets, server, server config, servers, SetEnvIf, Shell, Socket, Source Code, SPEED, SSH, SSI, stat, SymLinks, trick, tutorial, ultimate htaccess, Username, Web Hosting, WordPress
Posted in Apache, Apache Modules, Cache, DreamHost, Featured, Google, Hacking, Htaccess, Linux Unix BSD, Mod_Rewrite, SEO, Security, Web Design, Web Hosting, Web Tools, Webmaster, WordPress | Published on 01/10/2009 |66 Comments »

Htaccess SetEnvIf and SetEnvIfNoCase Examples

SetEnv, SetEnvIf, and SetEnvIfNoCase directives conditionally set environment variables accessible by scripts and apache based on HTTP Headers, Variables, and Request information.

Tags: 301 Redirect, 401, 403 Forbidden, Apache, apache ssl, askapache, ASP, authorization, Cache, Cache-Control, caching, Cookies, curl, debugging, Examples, FilesMatch, Fsockopen, GET, Google, Hacking, Htaccess, htaccess guide, htaccess tricks, htaccess tutorial, Htpasswd, HTTP Headers, httpd, HTTPS SSL, If-Modified-Since, Mod_Rewrite, Mod_Rewrite examples, Mod_Security, Mod_Setenvif, Nice, PHP, Port, post, Redirect, Rewrite Tricks, rewritecond, rewriterule, Robot, robots, robots.txt, Scripts, Security, SEO, server, server config, SetEnvIf, Shell, shell script, SPEED, SSI, stat, trick, tutorial, Wget, WordPress
Posted in Apache, Apache Modules, Cache, DreamHost, Featured, Hacking, Htaccess, Mod_Rewrite, SEO, Server Administration, Webmaster | Published on 12/07/2008 |4 Comments »

.htaccess Plugin Blocks Spam, Hackers, and Password Protects Blog

Well what can I say, other than this is sooo DOPE! Here is a list of the modules this plugin (version 4.7 unreleased) will automatically detect. I compiled the list myself using every module included with any default Apache installation for ALL the versions listed below, 1.3 to 2.2+

Want to know something else I’m including in this plugin? For each and every module that is detected, this plugin can then detect ALL of the modules .htaccess Directives! For instance, RewriteRule, AccessFileName, AddHandler, etc.. are each a directive belonging to a module that is allowed to be used from within .htaccess files.

Talk about sick.. these tricks have the diamond disease!

Tags: .htaccess plugin, 301 Redirect, 401, 403 Forbidden, admin, Advanced, Anti-Spam, Apache, askapache, ASP, Cache, Cookies, CSS, Dig, Email, errordocument, feed, FilesMatch, Firefox, GET, Hacking, hotlinking, Htaccess, htaccess files, htaccess rewrite, htaccess tricks, Htpasswd, HTTP Headers, httpd, HTTPS SSL, Login, mod_include, Mod_Rewrite, Mod_Security, Mod_Setenvif, password, PDF, PHP, Port, post, Redirect, Request Method, Rewrite Tricks, rewritecond, rewriterule, Security, server, servers, SetEnvIf, Source Code, SSI, stat, SymLinks, trick, WordPress
Posted in Apache, Cache, Featured, Hacking, Htaccess, PHP, SEO, Security, WordPress, WordPress Plugins | Published on 11/22/2008 |39 Comments »

Securing php.ini and php.cgi with .htaccess

If you have a php.cgi or php.ini file in your /cgi-bin/ directory or other pub directory, try requesting them from your web browser. If your php.ini shows up or worse you are able to execute your php cgi, you’ll need to secure it ASAP. This shows several ways to secure these files, and other interpreters like perl, fastCGI, bash, csh, etc.

Tags: 403 Forbidden, admin, Apache, askapache, Cache, errordocument, FilesMatch, GET, Htaccess, HTTP Headers, HTTP Status Codes, httpd, HTTPS SSL, Linux, Mod_Rewrite, Mod_Setenvif, Perl, PHP, php.ini, Port, post, ram, Redirect, Redirection, Rewrite Tricks, rewritecond, rewriterule, Scripts, Security, server, SetEnvIf, Shell, Source Code, SSI, stat
Posted in Apache, Htaccess, PHP, Security | Published on 06/24/2008 |2 Comments »

Skeleton .htaccess file for Powweb Hosting

If you have a Powweb Webhosting account, you will appreciate this simple skeleton .htaccess file for use on their systems.

Tags: 301 Redirect, 401, 403 Forbidden, 404 Not Found, 500, admin, Apache, askapache, Cache, Cache-Control, caching, CSS, DreamHost, errordocument, Examples, feed, FilesMatch, Flash, GET, Google, Htaccess, Htpasswd, HTTP Headers, Mod_Rewrite, Mod_Setenvif, Optimization, PDF, PHP, Powweb, Redirect, Rewrite Tricks, rewritecond, rewriterule, server, servers, SetEnvIf, tutorial, Web Hosting, WordPress
Posted in Apache, Htaccess, SEO, Security, Web Hosting, Webmaster | Published on 01/11/2008 |No Comments »

Apache Directives and Modules on DreamHost

Apache .htaccess Directives and Loaded Modules allowed on DreamHost Apache Server 2 Setups.

Tags: admin, Apache, askapache, authorization, Bandwidth, Cache, Cache-Control, Dig, DNS, DreamHost, Email, error log, errordocument, Etags, FilesMatch, filesystem, HowTo, Htaccess, HTTP Error, HTTP Headers, httpd, httpd.conf, HTTPS SSL, Linux, Logs, mod_include, Mod_Rewrite, Mod_Security, Mod_Setenvif, mysql, Performance, Port, ram, Redirect, Redirection, Request Method, Rewrite Tricks, Scripts, Security, server, server config, Server Side Includes, servers, SetEnvIf, Shell, Socket, SPEED, SSI, stat, Web Hosting
Posted in Apache, Apache Modules, DreamHost, Htaccess | Published on 11/23/2007 |No Comments »

Apache Variable Fun in htaccess

Server and Environment Variables are used by The Apache HTTP Server by provides a mechanism for storing information. This information can be used to control various operations such as logging or access control.

Tags: 301 Redirect, 401, 403 Forbidden, Advanced, Apache, apache ssl, askapache, ASP, Cache, Cache-Control, caching, Elite, Examples, Firefox, GET, grep, Hacking, Htaccess, htaccess guide, htaccess tricks, htaccess tutorial, Htpasswd, HTTP Headers, httpd, httpd.conf, HTTPS SSL, Logs, mod_include, Mod_Rewrite, Mod_Rewrite examples, Mod_Security, Mod_Setenvif, PHP, Port, post, ram, Redirect, Redirection, Rewrite Tricks, rewritecond, rewriterule, Scripts, Security, SEO, server, SetEnvIf, Shell, SPEED, SSI, stat, trick, tutorial
Posted in Apache, Cache, DreamHost, Htaccess, SEO, Security | Published on 04/10/2007 |3 Comments »

htaccess directives available on Powweb

List of the directives available to Powweb users for use in htaccess files

Tags: Dig, Htaccess, htaccess files, HTTPS SSL, mod_include, Mod_Rewrite, Mod_Setenvif, password, Powweb, Redirect, Rewrite Tricks, rewritecond, rewriterule, server, SetEnvIf, SSI, stat, Username
Posted in DreamHost, Htaccess | Published on 02/07/2007 |1 Comment »

FastCGI on DreamHost

Using FastCGI on DreamHost and .htaccess

Tags: 301 Redirect, 302 Redirect, 404 Not Found, 500, admin, Apache, authorization, Blocking, Cache, Cache-Control, Cookies, debugging, Dig, DreamHost, error log, errordocument, Examples, feed, filesystem, Firefox, Forms, GET, Htaccess, htaccess files, HTTP Headers, httpd, httpd.conf, HTTPS SSL, Javascript, Last-Modified, Linux, Login, Logs, Mod_Rewrite, Mod_Setenvif, mysql, Nice, password, Performance, Perl, PHP, php.ini, Port, post, Prompt, Python, ram, Redirect, Redirection, Rewrite Tricks, rewritecond, rewriterule, Scripts, Security, server, server config, servers, SetEnvIf, Shell, Socket, Source Code, SPEED, SSI, stat, SymLinks, Username, Web Hosting, WordPress
Posted in Apache, Apache Modules, DreamHost | Published on 11/28/2006 |No Comments »

Search Feed
Comments Feed

Search For mod_setenvif