http://www.debiantutorials.net Copy/Paste tutorials for Debian Linux Sat, 27 Feb 2010 15:23:01 +0000 http://backend.userland.com/rss092 en This module allows you to determine which country, region, city, postal code, area code the visitor is coming from. 1. Install the module apt-get install libapache2-mod-geoip 2. Restart Apache /etc/init.d/apache2 restart 3. Create a new PHP file to test the module (pico /var/www/test.php or any file you can access on your server) <?php print_r($_SERVER); ?> 4. Navigate to the ... http://www.debiantutorials.net/installing-the-geoip-apache-module/ If you would like to setup a Virtual Private Network (VPN) for Windows clients, PPTP is a great choice. It's easy to set up on the server and you don't need any additional software for the Windows clients to connect. 1. Install the required packages apt-get install pptpd 2. Configure the IP ... http://www.debiantutorials.net/installing-and-configuring-pptp-vpn-server-on-lenny/ XCache is a fast, stable PHP opcode cacher that has been tested and is now running on production servers under high load. It overcomes a lot of problems that has been with other competing opcachers such as being able to be used with new PHP versions. 1. Installing the XCache ... http://www.debiantutorials.net/install-xcache/ 1. Create a new file containing the blacklisted e-mail addresses (pico /etc/MailScanner/rules/spam.blacklist.rules) FromOrTo: user1@domain.com yes FromOrTo: user2@domain.net yes FromOrTo: default no 2. Configure MailScanner to handle all messages in the blacklist as spam (pico /etc/MailScanner/MailScanner.conf) Replace this line: Is Definitely Spam = no   with this: Is Definitely Spam = %rules-dir%/spam.blacklist.rules 3. Restart MailScanner /etc/init.d/mailscanner restart http://www.debiantutorials.net/blacklisting-e-mail-addresses-using-mailscanner/ suPHP is a tool for executing PHP scripts with the permissions of their owners. It consists of an Apache module (mod_suphp) and a setuid root binary (suphp) that is called by the Apache module to change the uid of the process executing the PHP interpreter. 1. Install suPHP apt-get install libapache2-mod-suphp 2. Disable ... http://www.debiantutorials.net/installing-suphp/ Nikto is a web server scanner which performs comprehensive tests against web servers for multiple items, including over 3500 potentially dangerous files/CGIs, versions on over 900 servers, and version specific problems on over 250 servers. 1. Install Nikto apt-get install nikto 2. Test the local web server nikto -h localhost Nikto also supports testing on ... http://www.debiantutorials.net/scan-your-web-server-for-vulnerabilities-with-nikto/ Squid is a caching proxy supporting HTTP, HTTPS, FTP, and more. It reduces bandwidth and improves response times by caching and reusing frequently-requested web pages. Squid has extensive access controls and makes a great server accelerator. 1. Install the Squid package apt-get install squid 2. Allow your ip network to use the proxy ... http://www.debiantutorials.net/installing-and-configuring-squid-proxy-server/ The Pound program is a reverse proxy, load balancer and HTTPS front-end for Web server(s). Pound was developed to enable distributing the load among several Web-servers and to allow for a convenient SSL wrapper for those Web servers that do not offer it natively. 1. Install the pound package apt-get install pound 2. ... http://www.debiantutorials.net/simple-load-balancing-using-pound/ MailScanner is an e-mail security and anti-spam package for e-mail gateway systems. MailScanner is highly configurable using a very easy-to-use system of rulesets. Virtually every configuration option can, for example, be controlled on a per-user, per-domain or per-IP basis. It's assumed that you have already installed and configured Postfix according ... http://www.debiantutorials.net/installing-and-configuring-mailscanner-for-virus-and-spam-filtering-postfix-clamav-spamassassin-razor/ Allowing root logins to your SSH damon is a big security threat. If the SSH port is open, hackers will probably at some time attempt to brute force your root password. It's a good idea to disable root logins to SSH and instead use a normal user to login and ... http://www.debiantutorials.net/disable-root-login-to-ssh/