https://wiki.itadmins.net/ 2026-05-23T10:50:44+00:00 https://wiki.itadmins.net/ https://wiki.itadmins.net/lib/exe/fetch.php?media=wiki:dokuwiki.svg text/html 2020-02-24T10:16:01+00:00 Anonymous (anonymous@undisclosed.example.com) https://wiki.itadmins.net/doku.php?id=apache2:csr_request&rev=1582539361&do=diff Apache CSR openssl req -new -newkey rsa:2048 -nodes -subj '/C=DE/ST=MVP/L=Schwerin/CN=*.itadmins.net' -keyout server.key -out server.csr text/html 2020-02-24T10:16:01+00:00 Anonymous (anonymous@undisclosed.example.com) https://wiki.itadmins.net/doku.php?id=apache2:forced_redirect_https&rev=1582539361&do=diff Forced redirects from http to https I am constantly finding myself needing to do this and can never seem to remember how, so here is my little reminder on the subject. Just a quick note. You don't actually need a port check because if you actually reach the RewriteCond then you are obviously on port 80 (so ignore all the ones on the net that say you should check for port 80. a waste of processor time). The only reason I check for HTTP_HOST is in case the VirtualHost entry below gets defaulted … text/html 2020-02-24T10:16:01+00:00 Anonymous (anonymous@undisclosed.example.com) https://wiki.itadmins.net/doku.php?id=apache2:geoip&rev=1582539361&do=diff Mod GeoIP Installation apt-get install libapache2-mod-geoip nano /etc/apache2/mods-available/geoip.conf a2enmod geoip mkdir /opt/GeoIP cd /opt/GeoIP wget http://geolite.maxmind.com/download/geoip/database/GeoLiteCountry/GeoIP.dat.gz wget http://geolite.maxmind.com/download/geoip/database/GeoLiteCountry/GeoIPv6.dat.gz gunzip *.gz service apache2 restart text/html 2020-02-24T10:16:01+00:00 Anonymous (anonymous@undisclosed.example.com) https://wiki.itadmins.net/doku.php?id=apache2:list_all_hosts&rev=1582539361&do=diff List all Hosts Sometimes you will need to get a list of all hosts/domain/sub-domains your apache server is configured to serve. Here is a quick and easy way that lists all ServerName and ServerAlias entries in your configs: blogs:/# cd /etc/apache2/sites-enabled/ blogs:/etc/apache2/sites-enabled# THECONFS="`ls`"; for ACONF in ${THECONFS}; do cat ${ACONF} | tr '\t' ' ' | grep -E '^ *(ServerName|ServerAlias)' | sed -r 's/^( |ServerName|ServerAlias)+//g' | tr ' ' '\n'; done | sort -fu bdb.mol.vs… text/html 2020-02-24T10:16:01+00:00 Anonymous (anonymous@undisclosed.example.com) https://wiki.itadmins.net/doku.php?id=apache2:modsecurity2&rev=1582539361&do=diff Mod Security2 Install modsecurity2 apt-get install libapache2-mod-security2 lua50 sudo a2enmod security2 sudo a2enmod headers Install CRS wget -O /tmp/modsecurity-crs.tar.gz https://github.com/SpiderLabs/owasp-modsecurity-crs/tarball/master cd /tmp tar xvzf modsecurity-crs.tar.gz mv SpiderLabs-* /usr/local/share/modsecurity-crs cd /usr/local/share/modsecurity-crs mv modsecurity_crs_10_setup.conf.example modsecurity_crs_10_setup.conf text/html 2020-02-24T10:16:01+00:00 Anonymous (anonymous@undisclosed.example.com) https://wiki.itadmins.net/doku.php?id=apache2:redirect_to_subdirectory&rev=1582539361&do=diff Redirect all visitors to a subdirectory If you just migrated your entire site to a new platform with a new design it is a LOT easier to change everything over if you just redirect all traffic to the new subdirectory containing your new presence. Try this out for redirecting all visitors to a new wordpress presence: text/html 2020-02-24T10:16:01+00:00 Anonymous (anonymous@undisclosed.example.com) https://wiki.itadmins.net/doku.php?id=apache2:self_signed_cert&rev=1582539361&do=diff Self signed Cert * topenssl req -x509 -nodes -days 365 -newkey rsa:1024 -keyout mykey.pem -out mycer.pem or even better * openssl req -x509 -nodes -days 365 -subj '/C=DE/ST=MVP/L=Schwerin/CN=*.itadmins.net' -newkey rsa:1024 -keyout mykey.pem -out mycert.pem