Web Servers

32K

Solutions

21K

Contributors

A web server refers to the software that helps to deliver web content that can be accessed either through the Internet or through an intranet. The primary function of a web server is to store, process and deliver web pages to clients. The communication between client and server takes place using the Hypertext Transfer Protocol (HTTP). The most common use of web servers is to host websites, but there are other uses such as gaming, data storage, running enterprise applications, handling email, FTP, etc.

Share tech news, updates, or what's on your mind.

Sign up to Post

Hi Experts!

I'm wondering about the following scenario, in terms of security:

A high traffic website (www.site.com or site.com) with some other subdomains running Apache/PHP on top of Linux, the website is using cookies to store user's data, the cookie's header states "domain=.site.com", so its a wildcard, cookies are encrypted and over https.  Twenty (20) other sites are "hosted" on the same "site.com" using their own subdomain "blog1.site.com, blog2.site.com, etc). These hosted subdomains are a basic CNAME at the DNS level pointing to a FQDN hosted somewhere else.

Given the above scenario, in specific, would one of those 20 subdomains be able to view/read/alter Cookies from the main website (www.site.com or site.com) or one of its subdomains (me.site.com, app.site.com, my.site.com, etc) ?

What are the security risks in place? Are there techniques or best practices for dealing with such scenario, wanting to exclude a list of subdomains from accessing unprivileged cookies? Anything else I should be aware?

If you can share some knowledge I would appreciate, thank you!!
0
On Demand Webinar - Networking for the Cloud Era
LVL 9
On Demand Webinar - Networking for the Cloud Era

This webinar discusses:
-Common barriers companies experience when moving to the cloud
-How SD-WAN changes the way we look at networks
-Best practices customers should employ moving forward with cloud migration
-What happens behind the scenes of SteelConnect’s one-click button

We are still using Tomcat 6.0 and plan to move to latest version by next year. Problem with current version is to set the access deny to our web-application.

I tried adding valve with webapps/META-INF/context.xml file as below but nothing works. Can you please provide a fix.

<Context antiJARLocking="true" path="/">
<Valve className="org.apache.catalina.valves.RemoteIpValve" />
<Valve className="org.apache.catalina.valves.RemoteAddrValve" allow="{IP_address}" />
</Context>

Or

<Context antiResourceLocking="false" privileged="true">
    <Valve className="org.apache.catalina.valves.RemoteAddrValve" allow="127\.0\.0\.1,8\.8\.4\..*"/>
</Context>

Open in new window


Do you guys have any another solution as I want to restrict outside users from accessing Manager view and it will be accessible only from localhost?

Best Regards
0
I had this question after viewing How Can You Update an Activated Quote.

quote is in inprogress i need to change to open state and update a field and need to change status. i did the same getting error. Can you explain how you achieved.
0
Hello Team,

I am new to F5. I need help on F5 rules for my requirement. I was able to accomplish the same using nginx. Below is my ngnix configuration which works good.

server {
    listen       80 default_server;
    listen       [::]:80 default_server;
    server_name  wiki.mydomain.com;
    root         /usr/share/nginx/html;

    # Load configuration files for the default server block.
    include /etc/nginx/default.d/*.conf;

    location / {
	set $backend "http://172.16.222.161:8090";
        proxy_pass $backend;
        proxy_redirect http://172.16.222.161:8090 $scheme://$host/;
	client_max_body_size 100m;
        proxy_set_header X-Forwarded-Host $host;
        proxy_set_header X-Forwarded-Server $host;
        proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
    }

   location /synchrony {
        set $backend "http://172.16.222.161:8091";
        proxy_pass $backend;
        proxy_redirect http://172.16.222.161:8091 $scheme://$host/;
	proxy_set_header X-Forwarded-Host $host;
        proxy_set_header X-Forwarded-Server $host;
        proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
        proxy_http_version 1.1;
        proxy_set_header Upgrade $http_upgrade;
        proxy_set_header Connection "Upgrade";
    }}

Open in new window


I'm specifically looking at irules for location / and location /synchrony. There are two services running on the same server one is on 8090 and another on 8091. If the incoming HTTP request contains /synchrony then it should proxy redirect them to same backend server on port 8091 and everything else should go to the same backend server on port 8090.

Currently, I setup vserver and accessing wiki.mydomain.com is going to backend on port 8090 (http://172.16.222.161:8090).

I will need help on accomplish the above task.

Thanks for advance help.

Thanks
Shankar
0
Our web servers are hosted on a 3rd party network (which our network is directly tied to). Meaning we can get to our servers at the 3rd party like we would servers sitting in our building.

Anyway, we have a load balancer and 2 web servers (let's call then ws1 and ws2).

All of our websites (www.oursite.com), obviously, goes through the LB and directs the traffic to either WS1 or WS2. If we want to bypass the load balancer, we can go to ws1.oursite.com or ws2.oursite.com.

So, here's the problem.

From internally only, if I try to go to www.oursite.com, the sites don't load. They  just spin and spin and spin. We're seeing some of the HTML come back, but it doesn't serve up the whole page.

If I go to ws1.oursite.com or ws2.oursite.com, everything loads as it should. Again, this is only happening internally...external users are not seeing any issues.

I'm not 100% convinced it's the Load Balancer causing the issue, but it sure seems that way since the LB receives the request and then sends the content back to the browser.

We are all really stumped here. Short of rebooting the Load Balancer, does any one have any insights or ideas? Thanks in advance!
0
I have a Centos Linux 7.0 Server, with Plesk Panel 12.5 running on it, I have ssh access on the server, and i can assign ssh access to the users thur the Plesk Panel. I am not sure if i have FTp server software running on the system. How to determine this, and how the upload a secure ftp server on the system. Please help
0
What exactly is the difference between a Web Framework, Web Server vs Javascript Frameworks?
0
Hello experts I'm trying to find some information on a website we have.  its address is https://csg.abc.com  Whats does the CSG represent?
I'm guessing it has something to do with Certificates?
0
Hi, I have a problem with my website(dealclik.us) pinging and loading webpages, this website is loading properly but except for one customer it is redirecting to xyz.xyz

I have talked to hosting providers, they are not able to fix this as they could not see any problem with the website. Please help me in fixing this. I asked that particular customer to restart their router, they have a static IP, they restarted the router but the issue is not fixed, how to fix this? please help!!

Thanks in advance.
0
I don't know when I apply for amazon job they reject my application i don't know why
0
Get 15 Days FREE Full-Featured Trial
LVL 1
Get 15 Days FREE Full-Featured Trial

Benefit from a mission critical IT monitoring with Monitis Premium or get it FREE for your entry level monitoring needs.
-Over 200,000 users
-More than 300,000 websites monitored
-Used in 197 countries
-Recommended by 98% of users

Hello,

I had tomcat configured to redirect any requests to HTTP to redirect to HTTPS. This was functioning well until we had to do a DR restore of the DEV application. Now, HTTP does not redirect, but HTTPS works fine. I have compared the web.xml and server.xml configurations between our DEV and PROD installations, and found no differences. Below are the sanitized versions of the config:

Server.XML
<Connector port="80"
                   maxThreads="150"
                   minSpareThreads="25"
                   connectionTimeout="20000"
                   enableLookups="false"
                   maxHttpHeaderSize="8192"
                   protocol="HTTP/1.1"
                   useBodyEncodingForURI="true"
                   redirectPort="443"
                   acceptCount="100"
                   disableUploadTimeout="true"
                   bindOnInit="false"/>


<Connector port="443"
				   maxHttpHeaderSize="8192"
				   maxThreads="150"
				   minSpareThreads="25"
				   maxSpareThreads="75"
				   enableLookups="false"
				   disableUploadTimeout="true"
				   acceptCount="100"
				   scheme="https"
				   secure="true"
				   SSLEnabled="true"
				   clientAuth="false"
				   sslProtocol="TLS"
				   keyAlias="DEV_ALIAS"
				   keystoreFile="L:\ocation\to\keystore.jks"
				   keystorePass="supersecretkey"/>

Open in new window



Web.XML (this code is entered after all of the servlet-mapping, and before filter-mapping)
security-constraint>
<web-resource-collection>
<web-resource-name>Entire Application</web-resource-name>
<url-pattern>/*</url-pattern>
</web-resource-collection>
<user-data-constraint>
<transport-guarantee>CONFIDENTIAL</transport-guarantee>
</user-data-constraint>
</security-constraint>

Open in new window



Any idea why this might be failing?
0
IBM websphere is stopping automatically. pls suggest me how to resolve this issue.
0
AuthType Basic
AuthName "Auth Required"
AuthUserFile C:/xampp/apache/bin/passwordfile
Require valid-user
# allow public access to the following resources
SetEnvIf Request_URI "(path/to/directory/)$" allow
SetEnvIf Request_URI "(C:/xampp/htdocs/TickTock_int/results_invoices_IDsel_Client.php\.php)$"  allow
SetEnvIf Request_URI "(util)$"  allow
Order allow,deny
Allow from env=allow
Allow from ::1
Satisfy any

Open in new window


I am trying to allow access through my xampp .htaccess file to the referenced php page above
Problem is the .htaccess is still active when I access this page externally
0
I have set up a php mailer application which sends out emails to clients for payment as a weblink in the body of the email

When they click on the link the following url is accessed (the InvNo will obviously change depending on the client):
http://ticktockit.dyndns.biz:888/ticktock_int/results_invoices_IDSel_Client.php?invNo=295

How can I send this url as an encrypted url  or as a url which is not visible?
Is https the only way?
0
I rent dedicated server from 1and1.com for my website and try to setup Postfix to send email for my clients using php mail() function. I have email with 1and.1.com and trying to login to my account with Postfix. It does not work. If I send emails directly it's OK . If I use relayhost= smtp.1and1.com:587 It does not work

readme_directory = /usr/share/doc/postfix-2.10.1/README_FILES
relayhost = smtp.1and1.com:587
smtpd_sasl_auth_enable = yes
smtpd_tls_cert_file = /etc/postfix/ssl/smtpd.pem
smtpd_tls_key_file = /etc/postfix/ssl/smtpd.pem
smtpd_relay_restrictions = permit_mynetworks permit_sasl_authenticated defer_unauth_destination
smtpd_tls_security_level = encrypt
smtp_sasl_password_maps = hash:/etc/postfix/smtp_sasl_password_map
smtp_sasl_auth_enable = yes
smtp_use_tls = yes

Can you help me?

Thank you
0
HTTP Status 405 - Request method 'GET' not supported

type Status report

message Request method 'GET' not supported

description The specified HTTP method is not allowed for the requested resource.

Apache Tomcat/7.0.69
0
Good morning All

I have a developer who wants to run a powershell script to check IIS web server configurations and changes including registry, and also use the script to configure new IIS web servers so that they will all be identical.  Is running a PS script a good way to do this or is he re-inventing the wheel?  Is there a product that will do this is a more secure / controlled fashion?

Many thanks

Eric
0
I have a web site on my IIS server, which was accessible on the LAN.  I have two initial goals:  
1)  put the IIS server in a DMZ
2) configure the router so that the web site is accessible from the outside world

I moved the IIS server from the LAN port on my router to the DMZ port.  The router initially had firewall rules allowing access to the DMZ for all traffic from Any to Any.  I created a rule that denies access to the DMZ for all traffic from Any to Any, and then created a rule that allows access to the DMZ for HTTP requests from Any to Any.

I then created a port forwarding rule to forward HTTP/ port 80 to the internal IP address of the server.

I still can't access the web site externally.  And I can't access or ping the server from the LAN.
Ideas on what I need to change here?
Cisco RV325 router

access rules
port forwarding
0
We are looking to upgrade our coldfusion server (v 6.1) running server (2003) to a new server (server 2012) and ColdFusion 2016.

Looking for a solution/upgrade path.. If I need to upgrade first to a lower version.

If its not semi simple then possibly moving to another dev language.

Thanks in advance!
0
Simple, centralized multimedia control
Simple, centralized multimedia control

Watch and learn to see how ATEN provided an easy and effective way for three jointly-owned pubs to control the 60 televisions located across their three venues utilizing the ATEN Control System, Modular Matrix Switch and HDBaseT extenders.

Can anyone recommend a cheap, great up time VPS hosting company? Any VPS hosting company's that offer $.99/month hosting?
0
I was looking at WordPress. Never used WordPress before. Looking at the Business plan. Is the plan $24.92/monthly or 1 payment of $24.92 for 1 year?

I would like to create a blog Unlimited Storage Space to add videos etc. Kind of like worldstarhiphop

Is there a FREE service somewhere else that supports Unlimited Storage Space? Is there a WordPress alternative that has the features of the Business plan that's free?
0
I have  sun server that runs a local application that uses the following ports: JMS 5630, XML 9672,
ASP Http 80 and ASP https 443, i can only telnet to port 80, telneting to the other ports I get
unable to connect to remote host: connection refused. I checked the /etc/services and I do not see the ports listed.
BTW: This application used to work without problems...

Thanks
0
I am having little difficulty in resolving one URL redirection in remote location. Example: My website is https://temp.company.local/dev/rel and it's accessible through Remote host. However, when user requests for https://temp.company.local, he is getting redirected to Apache manager page which I don't want. Can you please provide a solution to fix this problem so that only proper URL will work and half will not redirect to tomcat manager page?
Just to update I'm not using IIS.

Best Regards,
Abhi
0
i AM TRYING TO SET UP AN OOKLA SERVER FOR MY COMPANY

IM USING SERVER 2012 - WHEN TESTING FROM OOKLA'S SERVER TESTER TOOL .

ONE OF THE SECTIONS IS GIVING ERROR 405 METHOD NOT ALLOWED..

I NEED TO ALLOW POSTS FOR THAT FILE OR LINK TO WORK .. THE FILE IS BY NAME (UPLOAD.ASPX)

I WANT TO KNOW  HOW TO GIVE PERMISSIONS - WITHIN HANDLER MAPPINGS

AND WHAT PERMISSIONS I NEED TO GIVE.
0
When I type in Localhost in the web browser on a Server 2008 RS webserver, i get this message. I was attempting to install PHP  7.0. and was doing some testing of phpinfo.php file and it could not find it.   127.0.0.1  does not bring up a page either.
0

Web Servers

32K

Solutions

21K

Contributors

A web server refers to the software that helps to deliver web content that can be accessed either through the Internet or through an intranet. The primary function of a web server is to store, process and deliver web pages to clients. The communication between client and server takes place using the Hypertext Transfer Protocol (HTTP). The most common use of web servers is to host websites, but there are other uses such as gaming, data storage, running enterprise applications, handling email, FTP, etc.