D90 Tools & Techniques

"So I can remember how I did stuff in the future…"

• Home
• About

Topics

• Auditing
• General Security
• Linux
• Networking
• Sysadmin Tools
• Uncategorized
• Web Hosting Tools
  • Lighttpd
  • Squid
• Windows

Archives

• April 2010
• February 2010
• January 2010
• December 2009
• October 2009
• September 2009
• August 2009
• July 2009
• June 2009
• May 2009
• March 2009
• February 2009
• December 2008
• November 2008
• October 2008
• July 2008
• May 2008
• April 2008
• January 2008
• December 2007
• October 2007
• September 2007

Handy References

• (Draft)
• SED One Liners
• Advanced Bash
• Advaned Bash (D90 Archive)
• ASCII Table
• Windows ALT Codes
• XHTML Codes
• CSS Codes
• SQL Reference
• Country / Language Codes
• CISCO IOS Reference

Search

Quick Reference Posts

• Favorite Commands
• Terms & Speeds
• Pre-press & Media
• Security Articles

Handy Services

• Whois
• IP Lookup
• MAC Address Lookup
• DIG
• Internet Traceroute
• MX Record Lookup
• File Transfer Speed
• Mac Address Lookup
• chmod calculator
• Internet Latency
• Akami Internet Visualization
• Unit Convertor
• Reverse Hash Database

Some Favorite Sites

• Schneier on Security
• Krebs on Security
• MalwareInt Blog
• CSO Online
• The Register
• Internet Storm Center
• Chronology of Data Breaches
• SANS Forensics Blog

More Favorite Posts

• Baloney Detector
• Default Passwords
• Data Center Naming

How do I do that again?

• Interpreting TOP
• Yahoo's Website Optimization Rules

Security Resources

• Professional Security Testers
• Open Source Security Test Methodology
• ISO 17799
• NIST Security Assessment Framework
• CERT OCTAVE Assessment Framework
• NSA System Hardening Guidelines
• Microsoft Baseline Security Analyzer, Other Tools, and Frameworks
• WebGoat Web Vulnerability Practice
• OWASP Web Application Vulnerabilities
• CyberCrime.gov Updated list of incidents
• Information Systems Audit Methodology
• Terry Ritter's Guideline for safe PC Banking

Forensic Resources

• Sleuth Kit

More Security Resources

• Typo Squatting

Archive for May, 2009

Squid handling http –> https redirects

Friday, May 29th, 2009

In configuring Squid to handle both our port 80 and 443 traffic, we have the issue that we can use redirects at the webserver level to redirect certain pages to https:// . So this is handled in Squid. First, make a simple script.  There’s a possibility another redirector like Squirm might do a better job, [...]

Lighttpd, virtual hosts, alternative ports

Friday, May 29th, 2009

In the configuration of our new server, all ports 80 and 443 traffic is handled by Squid as a reverse proxy.  8080 is the “backdoor” that bypasses Squid and hits Lighttpd directly. But the standard format of a Lighttpd virtual host entry doesn’t recognize alternate ports appended after the tld.  Not a big deal, this [...]

Lighttpd, virtual hosts, and wildcard domains

Friday, May 29th, 2009

So we’re setting up mirocommunity.com, and I don’t want to be hassled continously to create new hostnames in DNS. To avoid that, it’s a simple wildcard entry like this in the appropriate named database: *.mirocommunity.com.    IN      CNAME   mirocommunity.com. Which directs everything to our server. Now our server hosts multiple sites via host entries, so we [...]

Adding SSL support to Squid package on Ubuntu

Tuesday, May 26th, 2009

Ubuntu doesn’t package OpenSSL support with Squid in their distributions. But you don’t have to quite roll your own and compile from source either! You can add it to the package your self. Verify it doesn’t have ssl support: /usr/sbin/squid3 -v Modify /etc/apt/sources.list adding these lines: deb-src http://us.archive.ubuntu.com/ubuntu jaunty main restricted universe multiverse deb-src http://us.archive.ubuntu.com/ubuntu [...]

Installing Squid to handle both 80 and 443

Tuesday, May 26th, 2009

This outlines configuring Squid, running two instances, to handle both port 80 and 443 traffic on an Amazon EC2 instance running Ubuntu Jaunty.  We can bypass Squid by going directly to Lighttpd on port 8080. To answer a couple questions off the top, you should also read my post on how to configure http –> [...]

D90 Tools & Techniques is proudly powered by WordPress - Designed by RFDN
Entries (RSS) and Comments (RSS)