chmod

Posts Tagged ‘chmod’

30x Faster WP-Super Cache Site Speed

Thursday, March 18th, 2010

NOT a typo.. 30x is measurable, well-documented, and easily tested. This is what open-source is about. I haven’t had time to post much the past year, I’m always working! So I wanted to make up for that by publishing an article on a topic that would blow your mind and be something that you could actually start using and really get some benefit out of it. This is one of those articles that the majority of web hosting companies would love to see in paperback, so they could burn it.

Tags: Advanced, Apache, askapache, Backups, Bandwidth, Boot, Cache, chmod, console, devshm, DreamHost, File System, filesystem, grep, Hard Drive, HowTo, HTTPS SSL, ionice, Linux, memory bandwidth, mysql, Private Server, ram, rsync, Scripts, Security, server, servers, Shell, shell script, SLRAM, SPEED, speed improvements, SSI, stat, SymLinks, tmpfs, trick, Vulnerability, Web Hosting, webhosts, WordPress, WP-Super Cache
Posted in Apache, Cache, DNS, DreamHost, Featured, Hacking, Htaccess, Linux Unix BSD, Mod_Rewrite, PHP, Security, Server Administration, Shell Scripting, Web Design, Web Hosting, Web Tools, Webmaster, WiredTree, WordPress, WordPress Plugins | 7 Comments »

Advanced WordPress wp-config.php Tweaks

Wednesday, March 3rd, 2010

The bottom line for this article is that I want to make WordPress as fast, secure, and easy to install, run, and manage because I am using it more and more for client production sites, I will work for days in order to solve an issue so that I never have to spend time on that issue again. Time is money in this industry and that is ultimately (time) what there is to gain by tweaking WordPress.

Note: I spent no time on readability, this is primarily a read the code and figure it out article.. This is for advanced users looking for a reference or discussion and for those of you looking to advance. Feedback would be great if you make it that far..

Tags: 301 Redirect, admin, Advanced, Ajax, Anti-Spam, Apache, askapache, bash, bash_profile, Cache, caching, cheatsheet, chmod, Cookies, CSS, debugging, Elite, encryption, error log, Examples, feed, File Permissions, File System, filesystem, GET, grep, HowTo, Htaccess, HTTP Headers, HTTPS SSL, Javascript, Linux, Login, Logs, Mod_Rewrite, Mod_Rewrite cheatsheet, mysql, password, PHP, php.ini, phpinfo, Port, post, Rewrite Tricks, rewritecond, rewriterule, Security, server, Sessions, Shell, Socket, SPEED, SSH, SSI, stat, trick, umask, Username, Web Hosting, WordPress, wp-config.php
Posted in CSS, Cache, Featured, Hacking, Htaccess, Javascript, Linux Unix BSD, Mod_Rewrite, PHP, SEO, Security, Server Administration, Shell Scripting, Web Design, Web Hosting, Webmaster, WordPress, WordPress Plugins | 5 Comments »

Custom bash_profile for Advanced Shell Users

Monday, November 23rd, 2009

Looking for some advanced uses for the shell? Here is ~~some of~~ my best. The shell is where 70% of my work takes place, and I have at least one terminal open almost 100% of the time, for viewing tailing color-coded logs, and of course for the SSH Tunnels that I use to route various networking through, like my email. So I decided that to standardize and create a bash_profile containing the most time-saving and helpful functions that I could use on all the various hosting environments would really be some sweet sugar, so here is my constant Work-in-progress.

It works for all shells I encounter, including BackTrack, Debian, Knoppix, Arch Linux, etc. Also works for many hosting environments I use including DreamHost, HostGator, WiredTree, and pretty much any linux VPS.

I also rely on this heavily from within shell scripts I write to access all the functions and stuff in this .bash_profile, and to do that I just do like:

#!/bin/bash
 
source ~/.bash_profile &>/dev/nulll
 
pm "PM is a function to output nice messages with color"
yn "Are you enjoying the shell" && pm "Thats great!" || pm "Perhaps you're better suited for DOS"
yn "Show Calendar" && aa_calendar
yn "Show Fortune" && aa_fortune

Tags: .bashrc, 500, admin, Advanced, Apache, askapache, Backups, bash, bash alias, bash_profile, CCZE, chmod, CNAME, Cookies, curl, Dig, DreamHost, Firefox, Forms, GET, Google, GPG, grep, HostGator, Htaccess, Htpasswd, HTTP Headers, HTTPS SSL, ionice, iostat, Linux, Networking, Nice, PHP, Port, Prompt, PS1, Python, Redirect, Redirection, Renice, Scripts, server, servers, Shell, shell script, Shell Scripting, Socket, SOCKS, SPEED, SSH, SSI, stat, SymLinks, Ulimit, Web Hosting, Wget, WiredTree, WordPress, wp-config.php, xargs
Posted in Featured, Hacking, Linux Unix BSD, Security, Shell Scripting, Web Hosting | 6 Comments »

An AskApache Plugin Upgrade to Rule them All

Wednesday, July 29th, 2009

So my blog as been rather quiet for almost a year now, and very few updates if any have been released for my Password Protection PLugin, my Google 404 Plugin, and definately not for my AskApache CrazyCache plugin, which I will be releasing last… So for all of you who’ve helped me out by sending me suggestions and notifying me of errors and sticking with it… Just wanted to say sorry about that, and thanks for all the great ideas.. Well, I’ve been sticking with it as well believe it our not. I manage to get free days once in a while, and then its time to jam.

Tags: 401, 404 Not Found, admin, Advanced, Apache, askapache, AskApache Google 404, AskApache Password Protection, ASP, authorization, bash, Cache, Cache-Control, chmod, compression, Cookies, debugging, Dig, Email, errordocument, Etags, Examples, FilesMatch, Fsockopen, GET, Google, Htaccess, htaccess files, htaccess tricks, HTTP Headers, httpd, HTTPS SSL, Javascript, Last-Modified, Logs, mod_include, Mod_Rewrite, Mod_Setenvif, Networking, Nice, password, password protection, Perl, PHP, Port, post, Python, ram, Redirect, Rewrite Tricks, rewritecond, rewriterule, Robot, robots, Scripts, Security, SEO, server, server config, servers, SetEnvIf, Shell, Socket, Source Code, SSH, SSI, stat, trick, Username, Web Hosting, Wireshark, WordPress, WordPress Plugins, WordPress Security
Posted in Apache, Apache Modules, Cache, Featured, Hacking, Htaccess, Linux Unix BSD, Mod_Rewrite, PHP, Security, Web Hosting, Web Tools, Webmaster, Windows, WordPress, WordPress Plugins | 1 Comment »

PHP and AJAX shell console

Saturday, June 13th, 2009

Ever wanted to execute commands on your server through php? Now you can. I’m calling this file (see below) shell.php and it allows you to run commands on your web server with the same permissions that your php executable has.

Tags: 302 Redirect, 403 Forbidden, Ajax, Apache, Apache Htaccess, askapache, Backups, bash, chmod, console, errordocument, Flash, GET, Hacking, Htaccess, htaccess tutorial, HTTP-EQUIV, Javascript, Linux, Login, Mod_Rewrite, password, PHP, Port, ram, Redirect, Rewrite Tricks, rewritecond, rewriterule, Scripts, Security, server, Shell, shell console, shell script, Shell Scripting, SSI, stat, tutorial
Posted in Ajax, DreamHost, Featured, Hacking, Htaccess, Javascript, Linux Unix BSD, Mod_Rewrite, PHP, Security, Server Administration, Shell Scripting, Web Hosting, Web Tools, Webmaster | 15 Comments »

Mirroring an Entire Site using Rsync over SSH

Friday, April 10th, 2009

Sometimes there is an urgent need for creating an exact duplicate or “mirror” of a web site on a separate server. This could be needed for creating Round Robin Setups, Load-Balancing, Failovers, or for just plain vanilla backups. In the past I have used a lot of different methods to copy data from one server to another, including creating an archive of the whole directory and then using scp to send the file over, creating an archive and then encrypting it and then sending that file over using ftp, curl, etc., and my persistence at learning new ways to do things has paid off because now I use rsync to keep an exact replica of the entire directory on an external server, without having to use all the CPU and resources of other mirroring methods.

Tags: admin, Apache, askapache, Backups, Bandwidth, bash, chmod, compression, curl, debugging, DreamHost, Email, encryption, Forms, GET, Gmail, HostGator, HTTPS SSL, Linux, Login, Logs, password, PHP, Port, ram, Round Robin, rsync, Security, server, Shell, shell script, SPEED, SSH, SSH Tunnels, SSI, stat, WordPress
Posted in Apache, Featured, Linux Unix BSD, Security, Shell Scripting, Web Hosting | 2 Comments »

AskApache Debug Viewer Plugin for WordPress

Sunday, April 5th, 2009

The story behind this plugin is sorta wack, but in a good way :). While doing tons of security research on permissions, authorization, access, etc.. for the Password Protection plugin (still being worked on), I needed to have unheard of debugging capabilities while working on the plugin on the various websites, webhosts, and test servers that I use to test in different environments. So I hacked together a bunch of php code that helped me debug, actually I pretty much went overkill and tried to get as much debugging info as programmatically possible, and it ended up being so much code that I took it out of my Password Protection code and made it its own plugin.

Tags: admin, Ajax, Apache, Apache Modules, askapache, authorization, Cache, chmod, Cookies, debugging, error log, fifo, File Permissions, GET, Htaccess, Login, Nice, password, password protection, PHP, php.ini, phpinfo, Port, post, ram, Rewrite Tricks, Security, server, servers, Socket, SSI, stat, umask, Username, WordPress, WordPress Development
Posted in WordPress, WordPress Plugins | 1 Comment »

Password Protection Plugin Status

Sunday, March 1st, 2009

Enumerating Permissions can be Annoying

Don’t ask me how because I won’t tell you, but on one of the hosts I was testing on that did not allow direct access I was able to get the Apache server running as dhapache to erroneously write a file into my users blog directory. This is a big security no-no and I now have my .htaccess file written into the blog directory where it should go, but instead of my php script’s user having write access to the file so I can modify it, its owned by dhapache! Because the file is owned by dhapache I shouldn’t even be allowed to know it exists, but there it is. So the next step was to try and take ownership of the .htaccess file so that I could modify it. I tried and tried but was unsuccessful, I couldn’t modify it so that was another dead end. Actually it took me awhile to figure out how to remove the file from my directory. Being that it was owned by dhapache I couldn’t delete or modify it using my php process or even through ftp/ssh! Sysadmins regularly run find commands that search the servers for any files owned by dhapache that should not be there as this is a big red flag that someone has found a way to manipulate dhapache which could potentially lead to modifying dhapache-owned server config files, which sometimes is all it takes to hack your website and server.. Luckily I was able to delete it by basically running the hack again to overwrite the file.

Tags: .htaccess plugin, 500, admin, Apache, apache security, askapache, AskApache Password Protection, ASP, authorization, chmod, curl, debugging, Dig, DNS, feed, File Permissions, File System, filesystem, Fsockopen, GET, Hacking, Htaccess, HTTP Headers, httpd, HTTPS SSL, Login, Networking, nsa, password, password protection, PHP, php interpreter, Port, post, ram, Redirect, Robot, robots, Scripts, Security, security reasons, security tips, server, server config, servers, Socket, SSH, SSI, stat, Username, Web Hosting, WordPress
Posted in Apache, Featured, Hacking, Htaccess, Mod_Rewrite, PHP, Security, Web Hosting, WordPress, WordPress Plugins | 2 Comments »

The Ultimate Htaccess

Saturday, January 10th, 2009

Skip this – still under edit

I discovered these tips and tricks mostly while working as a network security penetration specialist hired to find security holes in web hosting environments. Shared hosting is the most common and cheapest form of web-hosting where multiple customers are placed on a single machine and “share” the resources (CPU/RAM/SPACE). The machines are configured to basically ONLY do HTTP and FTP. No shells or any interactive logins, no ssh, just FTP access. That is when I started examining htaccess files in great detail and learned about the incredible untapped power of htaccess. For 99% of the worlds best Apache admins, they don’t use .htaccess much, if AT ALL. It’s much easier, safer, and faster to configure Apache using the httpd.conf file instead. However, this file is almost never readable on shared-hosts, and I’ve never seen it writable. So the only avenue left for those on shared-hosting was and is the .htaccess file, and holy freaking fiber-optics.. it’s almost as powerful as httpd.conf itself!

Most all .htaccess code works in the httpd.conf file, but not all httpd.conf code works in .htaccess files, around 50%. So all the best Apache admins and programmers never used .htaccess files. There was no incentive for those with access to httpd.conf to use htaccess, and the gap grew. It’s common to see “computer gurus” on forums and mailing lists rail against all uses and users of .htaccess files, smugly announcing the well known problems with .htaccess files compared with httpd.conf – I wonder if these “gurus” know the history of the htaccess file, like it’s use in the earliest versions of the HTTP Server- NCSA’s HTTPd, which BTW, became known as Apache HTTP. So you could easily say that htaccess files predates Apache itself.

Once I discovered what .htaccess files could do towards helping me enumerate and exploit security vulnerabilities even on big shared-hosts I focused all my research into .htaccess files, meaning I was reading the venerable Apache HTTP Source code 24/7! I compiled every released version of the Apache Web Server, ever, even NCSA’s, and focused on enumerating the most powerful htaccess directives. Good times! Because my focus was on protocol/file/network vulnerabilites instead of web dev I built up a nice toolbox of htaccess tricks to do unusual things. When I switched over to webdev in 2005 I started using htaccess for websites, not research. I documented most of my favorites and rewrote the htaccess guide for webdevelopers. After some great encouragement on various forums and nets I decided to start a blog to share my work with everyone, AskApache.com was registered, I published my guide, and it was quickly plagiarized and scraped all over the net. Information is freedom, and freedom is information, so this blog has the least restrictive copyright for you. Feel free to modify, copy, republish, sell, or use anything on this site ;)

Tags: .htaccess examples, 301 Redirect, 302 Redirect, 401, 403 Forbidden, 404 Not Found, 500, 503, admin, Advanced, Apache, Apache Htaccess, apache ssl, askapache, ASP, authorization, Backups, Bandwidth, bash, Blocking, Boot, Cache, Cache-Control, caching, cheatsheet, chmod, code snippets, compression, Cookies, CSS, debugging, DreamHost, Email, error log, errordocument, Etags, Examples, experiments, feed, FeedBurner, File System, FilesMatch, filesystem, Firefox, Flash, Forms, GET, Google, Hacking, hotlinking, HowTo, Htaccess, htaccess files, htaccess guide, htaccess rewrite, htaccess tricks, htaccess tutorial, Htpasswd, HTTP Error, HTTP Headers, HTTP-EQUIV, httpd, httpd.conf, HTTPS SSL, hyper text transfer protocol, If-Modified-Since, Javascript, Last-Modified, Linux, Login, Logs, mad skills, mod_include, mod_python, Mod_Rewrite, Mod_Rewrite examples, Mod_Security, Mod_Setenvif, mysql, Nice, nsa, password, password protection, PDF, Performance, Perl, PHP, php.ini, phpinfo, Port, post, Powweb, Prompt, Python, ram, Redirect, Redirection, Request Method, Rewrite Tricks, rewritecond, rewriterule, Robot, robots, Sample .htaccess, Scripts, Security, SEO, seo secrets, server, server config, servers, SetEnvIf, Shell, Socket, Source Code, SPEED, SSH, SSI, stat, SymLinks, trick, tutorial, ultimate htaccess, Username, Web Hosting, WordPress
Posted in Apache, Apache Modules, Cache, DreamHost, Featured, Google, Hacking, Htaccess, Linux Unix BSD, Mod_Rewrite, SEO, Security, Web Design, Web Hosting, Web Tools, Webmaster, WordPress | 71 Comments »

Chmod, Umask, Stat, Fileperms, and File Permissions

Wednesday, November 19th, 2008

Unix file permissions are one of the more difficult subjects to grasp.. Well, ok maybe “grasp” isn’t the word.. Master is the right word.. Unix file permissions is a hard topic to fully master, mainly I think because there aren’t many instances when a computer user encounters them. I’ve done a lot of research on it the past couple weeks… and now here’s everything I’ve learned so far.. cuz you guys AskApache Regs Rock!

Tags: 301 Redirect, 302 Redirect, 401, 403 Forbidden, 404 Not Found, 500, 503, Apache, askapache, ASP, Backups, bash, bash_profile, Cache, chmod, Dig, DreamHost, fifo, File Permissions, File System, filesystem, Fsockopen, GET, Hacking, Htaccess, httpd, Linux, Login, password, Perl, PHP, php.ini, Port, Python, ram, Scripts, Security, server, servers, Sessions, Shell, Socket, Source Code, SSH, SSI, stat, trick, umask, Web Hosting
Posted in Apache, Featured, Hacking, Linux Unix BSD, PHP, Security, Server Administration, Shell Scripting, Web Hosting, Webmaster | 5 Comments »

Automated Folder Backup Shell-Script

Thursday, June 12th, 2008

This simple unix shell script automatically creates backups of a specific folder at regular hourly, nightly, weekly, and monthly intervals. Instead of the usual method for copying directory trees using tar with fifo, pipes, rsync, or NFS methods this script uses cpio which is much much faster and has cool options like saving m/a/c times, symlinks, relative paths, and weird file names.

Tags: Apache, askapache, Backups, bash, chmod, DreamHost, fifo, GET, Hacking, Linux, Nice, Perl, Port, post, Private Server, Renice, rsync, Scripts, Security, server, servers, Shell, shell script, SymLinks, tutorial, Web Hosting
Posted in DreamHost, Linux Unix BSD, Shell Scripting, Web Hosting | 1 Comment »

Speed Up Google Analytics, use local ga.js

Wednesday, January 30th, 2008

Host Google Analytics ga.js file locally for increased speed! Makes web pages load faster.

Tags: Advanced, Analytics, Apache, askapache, Cache, Cache-Control, caching, chmod, curl, Firefox, GET, Google, Google Analytics, Htaccess, HTTPS SSL, Javascript, Logs, Mod_Rewrite, Port, Rewrite Tricks, Scripts, server, Shell, shell script, SPEED, SSI, urchin.js, Web Hosting
Posted in Google, Linux Unix BSD | 8 Comments »

Apache Environment Variables CGI Script

Monday, January 7th, 2008

My improved version of the common printenv / test-cgi scripts for debugging Apache environment variables set in .htaccess files

Tags: admin, Apache, askapache, Cache, chmod, Cookies, Htaccess, htaccess files, HTTP Headers, httpd, Mod_Rewrite, Perl, Port, Redirect, Rewrite Tricks, rewriterule, Scripts, server, SetEnvIf, Shell, shell script, stat, trick
Posted in Apache, DreamHost, Linux Unix BSD, Shell Scripting | 1 Comment »

Awk Tutorial and Introduction

Monday, November 12th, 2007

While researching a unix/linux tool awk I came upon one of the most thorough and helpful tutorials I’ve ever seen devoted to a particular topic. It’s old-school just the way I like it. I contacted the author, Bruce Barnett because I just HAD to have this article for my readers, who are predominantly running solaris/unix/bsd/linux and he kindly gave permission.

Tags: 401, admin, Advanced, Apache, askapache, chmod, curl, Dig, Email, Examples, feed, Flash, Forms, GET, grep, HTTP Headers, Linux, Logs, Nice, password, Perl, Port, post, Prompt, ram, Rewrite Tricks, Scripts, Shell, shell script, SSI, stat, trick, tutorial, Username, xargs
Posted in Awk | 1 Comment »

Speed Up Google Analytics with urchin.js

Friday, September 14th, 2007

Update: This article is a bit dated, to get the newest and latest Google Analytics Speed Tips, check out the 3 part update about Hosting, Cookie Domains,…

Tags: admin, Analytics, Apache, askapache, Cache, Cache-Control, caching, chmod, Cookies, curl, Elite, Firefox, GET, Google, Google Analytics, Htaccess, HTTP Headers, httpd, If-Modified-Since, Javascript, Last-Modified, Port, ram, server, Shell, shell script, SPEED, SSI, stat, urchin.js, Web Hosting, Wget, Wireshark
Posted in DreamHost, Google, Shell Scripting, Webmaster | 11 Comments »

Troubleshooting Apache .htaccess Authentication

Saturday, August 18th, 2007

Apache Web Server users have problems getting Apache Authentication/password-protection in htaccess working, this is a troubleshooting guide to get Password Protection working!

Tags: Apache, Apache Htaccess, askapache, ASP, authorization, Cache, chmod, Dig, Elite, encryption, Examples, GET, HowTo, Htaccess, htaccess files, htaccess tutorial, Htpasswd, httpd, httpd.conf, HTTPS SSL, Linux, password, password protection, PHP, Port, post, Prompt, ram, Robot, robots, Security, server, Shell, Socket, SSH Tunnels, stat, tutorial, wp-config.php
Posted in Apache, Apache Modules, DreamHost, Htaccess, Linux Unix BSD, Mod_Rewrite, Security, Server Administration | 3 Comments »

Security with Apache htaccess Tutorial

Tuesday, April 10th, 2007

Apache Security tips and tricks for securing Apache Web Servers using htaccess, httpd.conf, and other built-in techniques to thwart attackers. This really should be required reading for any Apache admin or user because these little tricks are so easy to do.

Tags: 301 Redirect, 401, 403 Forbidden, 404 Not Found, 500, 503, admin, Advanced, Apache, Apache Htaccess, apache ssl, askapache, ASP, Backups, Cache, Cache-Control, caching, chmod, CSS, debugging, errordocument, Examples, FilesMatch, GET, Google, Hacking, HowTo, Htaccess, htaccess files, htaccess guide, htaccess tricks, htaccess tutorial, Htpasswd, HTTP Headers, HTTP Status Codes, httpd, httpd.conf, HTTPS SSL, mod_python, Mod_Rewrite, Mod_Rewrite examples, Mod_Security, password, Perl, PHP, Port, Python, ram, Redirect, Rewrite Tricks, rewritecond, rewriterule, Robot, robots, Scripts, Security, SEO, server, servers, SetEnvIf, Source Code, SPEED, SSI, stat, SymLinks, trick, tutorial, WordPress, wp-config.php
Posted in Apache, DreamHost, Htaccess, Security | 5 Comments »

Custom PHP.ini tips and tricks

Monday, February 5th, 2007

Describes in exhaustive detail how to change configuration settings and implement a custom php.ini file for use with the Apache Web Server.

View latest official php.ini

Sections:

When php run as Apache Module (mod_php)
When

…

Tags: admin, Apache, askapache, ASP, Cache, caching, chmod, CommandLine, compression, Cookies, curl, debugging, Dig, DreamHost, Email, error log, Examples, File Permissions, filesystem, GET, Htaccess, htaccess files, HTTP Headers, httpd, httpd.conf, HTTPS SSL, Javascript, Linux, Logs, Mod_Rewrite, mysql, Nice, nsa, password, Performance, PHP, php.ini, phpinfo, Port, post, Powweb, Prompt, ram, Redirect, Redirection, Rewrite Tricks, rewritecond, rewriterule, Scripts, Security, server, server config, servers, Sessions, SetEnvIf, Shell, shell script, Shell Scripting, Socket, SPEED, SSI, stat, trick, ultimate htaccess, umask, Username, Web Hosting, xargs
Posted in Apache, Htaccess, Linux Unix BSD, Mod_Rewrite, PHP, Security, Server Administration, Web Hosting, WiredTree | 13 Comments »