webleit.info

: LINUX-2-02.jpg (119.71 KiB) Viewed 142 times

: LINUX-2-01.jpg (118.63 KiB) Viewed 142 times

: LINUX-2-05.jpg (157.98 KiB) Viewed 142 times

: LINUX-2-04.jpg (239.78 KiB) Viewed 142 times

: LINUX-2-03.jpg (123.95 KiB) Viewed 142 times

: LINUX-2-10.jpg (187.15 KiB) Viewed 142 times

: LINUX-2-09.jpg (216.86 KiB) Viewed 142 times

: LINUX-2-08.jpg (72.72 KiB) Viewed 142 times

: LINUX-2-07.jpg (170.74 KiB) Viewed 142 times

: LINUX-2-06.jpg (193.95 KiB) Viewed 142 times

: LINUX-2-13.jpg (55.02 KiB) Viewed 142 times

: LINUX-2-12.jpg (224.28 KiB) Viewed 142 times

: LINUX-2-11.jpg (113.2 KiB) Viewed 142 times

: LINUX-1-2.jpg (132.48 KiB) Viewed 221 times

: LINUX-1-1.jpg (100.7 KiB) Viewed 221 times

: LINUX-1-5.jpg (237.54 KiB) Viewed 221 times

: LINUX-1-4.jpg (235.87 KiB) Viewed 221 times

: LINUX-1-3.jpg (240.66 KiB) Viewed 221 times

: LINUX-1-7.jpg (90.36 KiB) Viewed 221 times

: LINUX-1-6.jpg (175.72 KiB) Viewed 221 times

First things first. With this small and simple tar command we archive all our /var/www/ data. tar -zcvf archive.tar.gz /var/www Now we dump the MySQL database with the next command. mysqldump -u root -p databasename > /root/backupname.sql You will be asked to write the password for the database user...

Create a new file and call it proxy.reg Run and say yes. Windows Registry Editor Version 5.00 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings] "MigrateProxy"=dword:00000001 "ProxyEnable"=dword:00000001 "ProxyHttp1.1"=dword:00000000 "ProxyServer"="http://proxyhost:proxy...

If you need to protect your config files go to httpd.conf and add to the bottom:

Code: Select all

<Files "config.php">
Order Allow,Deny
Deny from All
</Files>

restart httpd after

If you want to disable TRACE methods go to httpd.conf and add to the bottom:

Code: Select all

TraceEnable Off

If you want to remove the powered by

Retrieved x-powered-by header: PHP/5.4.16

Go to httpd.conf and add to the bottom

Code: Select all

Header unset X-Powered-By

restart httpd.conf

For the The X-Content-Type-Options header is not set.
Open httpd.conf and add to the bottom

Code: Select all

LoadModule headers_module modules/mod_headers.so
Header set X-Content-Type-Options nosniff

Restart httpd service

If after you have checked your website you see this:

The X-XSS-Protection header is not defined.

Go to httpd.conf and add to the bottom

Code: Select all

LoadModule headers_module modules/mod_headers.so
Header set X-XSS-Protection "1; mode=block"

Be shure that Mod_headers is enabled
Restart apache

If you have this for your site after scanning:

The anti-clickjacking X-Frame-Options header is not present.

Go to apache httpd.conf and add to the bottom of the file

Code: Select all

Header always append X-Frame-Options SAMEORIGIN

After restart the apache server

webleit.info

Search found 37 matches

Zapoznavane s Linux Lekciq 2

Zapoznavane s Linux Lekciq 1

.tar.gz /var/www and vardump mysql and ssh to remote srv

How to change proxy with reg file

config.php: PHP Config file may contain database IDs and pas

Allowed HTTP Methods: TRACE

Retrieved x-powered-by header: PHP

The X-Content-Type-Options header is not set.

The X-XSS-Protection header is not defined.

The anti-clickjacking X-Frame-Options header is not present.