When debugging problems with web applications, it is often useful to display the HTTP request and response headers along with the HTTP entity bodies. There are numerous ways to do this, and I covered several client centric solutions in my SysAdmin article Debugging Web Applications. Client side tools are extremely useful for pinpointing problems, but [...]
I have been using PHP for quite some time, and have developed a love-hate relationship with it. The ability to rapidly create dynamic web applications is extremely powerful, but PHP’s absymal security track record often leads me to wonder if I should be using it (especially since a fair number of opensource PHP applications are [...]
It looks like a nasty security bug was discovered in the Apache mod_rewrite module, and new versions of Apache were released to address the problem. For those folks using mod_rewrite, it’s time to patch.
I recently came across Colm MacCarthaigh’s Apache tuning presentation and technical white paper: Tuning Apache and Linux for performance presentation: http://www.stdlib.net/~colmmacc/Apachecon-EU2005/scaling-apache-presentation.pdf Tuning Apache and Linux for performance paper: http://www.stdlib.net/~colmmacc/Apachecon-EU2005/scaling-apache-handout.pdf Colm is an admin at heanet, which runs some of the busiest web servers in the world. The presentation and white paper cover the entire software [...]
While reading up on PHP security, I came across several links that I thought I would pass on: Security Focus article on securing PHP installations: http://www.securityfocus.com/infocus/1706 Article on PHP attack vectors and defenses: http://www.securereality.com.au/studyinscarlet.txt Bugtraq discussion on PHP security: http://www.securityfocus.com/archive/1/438417/30/0/threaded
If you have used apxs to build an Apache module, you may have wondered where apxs got the linker and compiler options since they are not embedded in the apxs Perl script? The linker and compiler flags are generated by the apr-config and apu-config scripts, which contain platform specific options that are assigned at Apache [...]
