Apache

mod_rewrite

Logging aktivieren

LogLevel alert rewrite:trace6

Forward Proxy mit url parameter

<Location /lokation>
    RewriteEngine On
    RewriteRule ^ http://<server>/<requst>?<requestParameter>
</Location>

Reverse Proxy

proxy_module
proxy_httpd_module

cgi

Options +ExecCGI

Security Sites

https://securityheaders.io
https://www.ssllabs.com

Sicherheit

Header always set Strict-Transport-Security "max-age=31536000; \
    includeSubDomains"

    Header always set X-Frame-Options "SAMEORIGIN"
    Header always set X-Content-Type-Options "nosniff"
    Header always set X-Xss-Protection "1; mode=block"
    #Referrer-Policy: no-referrer-when-downgrade

OpenSSL

Zertifikate erzeugen

openssl genrsa -des3 -out server.key 2048
openssl req -new -key server.key -out server.csr
cp server.key server.key.org
openssl rsa -in server.key.org -out server.key
openssl x509 -req -days 365 -in server.csr -signkey server.key -out server.crt

cp server.crt /usr/local/apache/conf/ssl.crt
cp server.key /usr/local/apache/conf/ssl.key

Prüfen ob privater und öffentlicher Schlüssel passen

https://security.stackexchange.com/questions/56697/determine-if-private-key-belongs-to-certificate

This wiki is powered by ikiwiki.