Apache websockets proxying
I needed a way to proxy traffic from external mobile users to an internal (i.e. on-premises) RocketChat server. These are not normal https requests, they’re websockets requests that often remain Continue Reading…
Category: Web Hosting
Blocking (multiple) user agents with nginx
Got some script kiddie bots annoying you, but they’re using long legit-looking user agents you can’t easily pattern match on without catching legit visitors? Try this:
Running WordPress behind an nginx reverse proxy on a different domain
WordPress’ security track record speaks for itself. That being the case, my general goal is to run php apps under unique UID’s, even if they reside on the same website Continue Reading…
Keeping Amazon EC2 crap off your website
You’ve probably happened across this page because your website, or server, is continually being hammered with a barrage of bullshit requests from random IP’s within Amazon’s EC2 address space. They Continue Reading…
Plesk “Domains” list is empty
If you click into Plesk and find your Domains list is empty, but Subscriptions is still populating, then chances are you have some orphaned domain aliases. If, however, both the Continue Reading…
Amazon EC2 DDoS from ‘Typhoeus’ user agent
I’m really getting sick of dealing with downed web servers that result from DDoS attacks from Amazon EC2 space where the user agent is always the Typhoeus client. Amazon of course Continue Reading…
Replace the first line of hacked php scripts
If you’ve ever dealt with web servers that have sites running wordpress, you’ve probably dealt with hacked php scripts since pretty much any server running wordpress is going to have Continue Reading…
Disable wordpress pingback/trackback server-wide
It’s possible to get WordPress to help you with a reflective DDoS attack using the pingback feature. For additional info, see https://isc.sans.edu/forums/diary/Wordpress+Pingback+DDoS+Attacks/17801/ In any case, here’s a quick perl script Continue Reading…
List domains with mail enabled
Simple and to the point; query the db for domains with email enabled. This is only tested on Plesk 11.5:
Cron job to dump all mysql databases daily
If you use MySQL as part of your web hosting operation, which of course everyone does, you’ve probably run into your share of requests from customers to restore data. This Continue Reading…