AskApache

Show Events that Occurred on this day in the Past

AskApache — Fri, 17 May 2013 02:15:41 +0000

The Function: askapache_calendar

Note the screenshot is awesome due to my custom .vimrc. It is missing the randomized color in the code below.

Download OpenBSD Calendars

By default this script will use any calendars in your home directory ~/.calendars. If that directory does not exist when you call this function, it will tell you it is installing the calendars for you. It grabs the list of calendars straight from here. Here is the list:

calendar.all
calendar.birthday
calendar.canada
calendar.christian
calendar.computer
calendar.croatian
calendar.discord
calendar.fictional
calendar.french
calendar.german
calendar.history
calendar.holiday
calendar.judaic
calendar.music
calendar.openbsd
calendar.pagan
calendar.russian
calendar.space
calendar.ushistory
calendar.usholiday
calendar.world

Calendar Function Examples

Illustrating the random color output.

Source Code for Calendar Function

Download askapache_calendar.sh

#!/bin/bash
# Updated: Thu May 16 21:07:54 2013
# @ http://www.askapache.com/linux/show-events-occurred-day-linux.html
# Copyright (C) 2013 Free Software Foundation, Inc.
#
#   This program is free software: you can redistribute it and/or modify
#   it under the terms of the GNU General Public License as published by
#   the Free Software Foundation, either version 3 of the License, or
#   (at your option) any later version.
#
#   This program is distributed in the hope that it will be useful,
#   but WITHOUT ANY WARRANTY; without even the implied warranty of
#   MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
#   GNU General Public License for more details.
#
#   You should have received a copy of the GNU General Public License
#   along with this program.  If not, see .
 
function askapache_calendar ()
{
 
   if [[ ! -d ~/.calendar ]]; then
          echo "INSTALLING CALENDARS TO ~/.calendar";
 
          local U=http://www.openbsd.org/cgi-bin/cvsweb/~checkout~/src/usr.bin/calendar/calendars/ OPWD=$PWD;
 
          mkdir -pv ~/.calendar;
 
          cd ~/.calendar
          curl -# $(for f in $(curl -sSo - $U | sed '/">calendar\./!d; s,^.*;
 …Show Events that Occurred on this day in the Past… originally appeared on AskApache.com
The post Show Events that Occurred on this day in the Past appeared first on AskApache.

Bash alternative to Reflector for Ranking Mirrors

AskApache — Tue, 07 May 2013 06:20:31 +0000

AskApache.com

So if you don't already know, I am a long-time user and supporter of Arch Linux. Arch uses a package management tool called pacman that works similarly to yum or apt, but much better IMHO. It uses a list of mirrors to perform the actual downloading of the package files, so you want the fastest mirrors to be in the mirror list. The old way is to use reflector to rank the speed of the mirrors, which is a python script. My way is pure bash using curl, sed, awk, xargs, and sort. Very simple and IMHO more effective than reflector.

Creating /etc/pacman.d/mirrorlist

Just run the script and redirect the output to /etc/pacman.d/mirrorlist like this:

$ ./reflector.sh | sudo tee /etc/pacman.d/mirrorlist

How it works

Well it's simple, essentially it performs these steps:

Fetch the current list of (only current 100%) mirrors from the official site.
Use curl to request a small 257 byte file from each of those mirrors (about 200-300), 40 at a time and save the fastest 50. This also gets the dns cached for the next step
Use curl to request a 100 kb file from each of those mirrors, measuring the total time of the request, and the speed of the download, 10 at a time.
Finally, merge the results of both of those tests into a list of 50 mirrors in the format for outputting directly to /etc/pacman.d/mirrorlist

Why pure bash over reflector?

Well because I like my systems extra crazy lean, I often don't want to install python right after an initial install of Arch. Also, this is much faster and easier on the system resources, and I believe it is also more accurate. I'd like to encourage others to turn to pure shell scripting to do simple tasks like this, often that is a better long-term solution than building a new piece of software. But I'm not against reflector, it's a pretty awesome bit of python with many features.

reflector.sh Source

Download reflector.sh

#!/bin/bash
# Updated: Tues May 07 21:04:12 2013 by webmaster@askapache
# @ http://www.askapache.com/shellscript/reflector-ranking-mirrors.html
# Copyright (C) 2013 Free Software Foundation, Inc.
#
#   This program is free software: you can redistribute it and/or modify
#   it under the terms of the GNU General Public License as published by
#   the Free Software Foundation, either version 3 of the License, or
#   (at your option) any later version.
#
#   This program is distributed in the hope that it will be useful,
#   but WITHOUT ANY WARRANTY; without even the implied warranty of
#   MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
#   GNU General Public License for more details.
#
#   You should have received a copy of the GNU General Public License
#   along with this program.  If not, see .
 
# if mirrors exists, cat it, otherwise create it
function get_mirrors () #{{{1
{
   if [[ -s $MIRRORS ]]; then
          cat $MIRRORS;
   else
          curl -LksS -o - 'https://www.archlinux.org/mirrors/status/json/' | \
          sed 's,{,\n{,g' | sed -n '/rsync/d; /pct": 1.0/p' | sed 's,^.*"url": "\([^"]\+\)".*,\1,g' > $MIRRORS
          cat $MIRRORS;
   fi
}
 
function get_core_urls () #{{{1
{
   get_mirrors | sed "s,$,core/os/${ARCH}/core.db.tar.gz,g"
}
 
function get_gcc_urls () #{{{1
{
   get_mirrors | sed "s,$,core/os/${ARCH}/${GCC_URL},g"
}
 
# rm tmp file on exit
trap "exitcode=\$?; (rm -f \$MIRRORS 2>/dev/null;) && exit \$exitcode" 0;
trap "exit 1" 1 2 13 15;
 
# file containing mirror urls
MIRRORS=`(mktemp -t reflector-mirrorsXXXX) 2>/dev/null` && test -w "$MIRRORS" || MIRRORS=~/reflector.mirrorsXXX
 
# arch
ARCH=`(uname -m) 2>/dev/null` || ARCH=x86_64
 
# the gcc file
GCC_URL=$( curl -LksSH --url ftp://ftp.archlinux.org/core/os/${ARCH}/ 2>/dev/null | sed -n 's/^.*\ \(gcc-[0-9]\+.*.tar.xz.sig\)\ -.*$/\1/gp' );
 
{
   # faster as primarily used to pre-resolve dns for 2nd core test
   get_gcc_urls | xargs -I'{}' -P40 curl -Lks -o /dev/null -m 3 --retry 0 --no-keepalive -w '%{time_total}@%{speed_download}@%{url_effective}\n' --url '{}' |\
   sort -t@ -k2 -nr | head -n 50 | cut -d'@' -f3 | sed 's,core/os/'"${ARCH}/${GCC_URL}"',$repo/os/$arch,g'
 
   get_core_urls | xargs -I'{}' -P10 curl -Lks -o /dev/null -m 5 --retry 0 --no-keepalive -w '%{time_total}@%{speed_download}@%{url_effective}\n' --url '{}' |\
   sort -t@ -k2 -nr | head -n 50 | cut -d'@' -f3 | sed 's,core/os/'"${ARCH}"'/core.db.tar.gz,$repo/os/$arch,g'
} | sed 's,^,Server = ,g' | awk '{ if (!h[$0]) { print $0; h[$0]=1 } }'
 
exit $?;

Xargs running curl in parallel

Just shows the output of htop while running the script.

…Bash alternative to Reflector for Ranking Mirrors… originally appeared on AskApache.com

The post Bash alternative to Reflector for Ranking Mirrors appeared first on AskApache.

Htaccess – The Ultimate Guide

AskApache — Wed, 01 May 2013 13:05:32 +0000

AskApache.com

.htaccess is a very ancient configuration file that controls the Web Server running your website, and is one of the most powerful configuration files you will ever come across. Htaccess has the ability to control access of the WWW's HyperText Transfer Protocol (HTTP) using Password Protection, 301 Redirects, rewrites, and much much more. This is because this configuration file was coded in the earliest days of the web (HTTP), for one of the first Web Servers ever! Eventually these Web Servers (configured with htaccess) became known as the World Wide Web, and eventually grew into the Internet we use today.

This is not an introduction to .htaccess… This is the evolution of the best of the best.

You've come to the right place if you are looking to acquire mad skills for using .htaccess files.

Originally (2003) this guide was known in certain hacker circles and hidden corners of the net as an ultimate .htaccess due to the powerful htaccess tricks and tips to bypass security on a webhost, and also because many of the tricks and examples were pretty impressive back then in that group.

Htaccess - Evolved

The Hyper Text Transfer Protocol (HTTP) was initiated at the CERN in Geneve (Switzerland), where it emerged (together with the HTML presentation language) from the need to exchange scientific information on a computer network in a simple manner. The first public HTTP implementation only allowed for plain text information, and almost instantaneously became a replacement of the GOPHER service. One of the first text-based browsers was LYNX which still exists today; a graphical HTTP client appeared very quickly with the name NCSA Mosaic. Mosaic was a popular browser back in 1994. Soon the need for a more rich multimedia experience was born, and the markup language provided support for a growing multitude of media types.

Htaccess file know-how will do several things for you:

Make your website noticeably faster.
Allow you to debug your server with ease.
Make your life easier and more rewarding.
Allow you to work faster and more productively.

AskApache Htaccess Journey

Skip this - still under edit

I discovered these tips and tricks mostly while working as a network security penetration specialist hired to find security holes in web hosting environments. Shared hosting is the most common and cheapest form of web-hosting where multiple customers are placed on a single machine and "share" the resources (CPU/RAM/SPACE). The machines are configured to basically ONLY do HTTP and FTP. No shells or any interactive logins, no ssh, just FTP access. That is when I started examining htaccess files in great detail and learned about the incredible untapped power of htaccess. For 99% of the worlds best Apache admins, they don't use .htaccess much, if AT ALL. It's much easier, safer, and faster to configure Apache using the httpd.conf file instead. However, this file is almost never readable on shared-hosts, and I've never seen it writable. So the only avenue left for those on shared-hosting was and is the .htaccess file, and holy freaking fiber-optics.. it's almost as powerful as httpd.conf itself!

Most all .htaccess code works in the httpd.conf file, but not all httpd.conf code works in .htaccess files, around 50%. So all the best Apache admins and programmers never used .htaccess files. There was no incentive for those with access to httpd.conf to use htaccess, and the gap grew. It's common to see "computer gurus" on forums and mailing lists rail against all uses and users of .htaccess files, smugly announcing the well known problems with .htaccess files compared with httpd.conf - I wonder if these "gurus" know the history of the htaccess file, like it's use in the earliest versions of the HTTP Server- NCSA's HTTPd, which BTW, became known as Apache HTTP. So you could easily say that htaccess files predates Apache itself.

Once I discovered what .htaccess files could do towards helping me enumerate and exploit security vulnerabilities even on big shared-hosts I focused all my research into .htaccess files, meaning I was reading the venerable Apache HTTP Source code 24/7! I compiled every released version of the Apache Web Server, ever, even NCSA's, and focused on enumerating the most powerful htaccess directives. Good times! Because my focus was on protocol/file/network vulnerabilites instead of web dev I built up a nice toolbox of htaccess tricks to do unusual things. When I switched over to webdev in 2005 I started using htaccess for websites, not research. I documented most of my favorites and rewrote the htaccess guide for webdevelopers. After some great encouragement on various forums and nets I decided to start a blog to share my work with everyone, AskApache.com was registered, I published my guide, and it was quickly plagiarized and scraped all over the net. Information is freedom, and freedom is information, so this blog has the least restrictive copyright for you. Feel free to modify, copy, republish, sell, or use anything on this site ;)

What Is .htaccess

Specifically, .htaccess is the default file name of a special configuration file that provides a number of directives (commands) for controlling and configuring the Apache Web Server, and also to control and configure modules that can be built into the Apache installation, or included at run-time like mod_rewrite (for htaccess rewrite), mod_alias (for htaccess redirects), and mod_ssl (for controlling SSL connections).

Htaccess allows for decentralized management of Web Server configurations which makes life very easy for web hosting companies and especially their savvy consumers. They set up and run "server farms" where many hundreds and thousands of web hosting customers are all put on the same Apache Server. This type of hosting is called "virtual hosting" and without .htaccess files would mean that every customer must use the same exact settings as everyone else on their segment. So that is why any half-decent web host allows/enables (DreamHost, Powweb, MediaTemple, GoDaddy) .htaccess files, though few people are aware of it. Let's just say that if I was a customer on your server-farm, and .htaccess files were enabled, my websites would be a LOT faster than yours, as these configuration files allow you to fully take advantage of and utilize the resources allotted to you by your host. If even 1/10 of the sites on a server-farm took advantage of what they are paying for, the providers would go out of business.

SKIP: History of Htaccess in 1st Apache.

One of the design goals for this server was to maintain external compatibility with the NCSA 1.3 server --- that is, to read the same configuration files, to process all the directives therein correctly, and in general to be a drop-in replacement for NCSA. On the other hand, another design goal was to move as much of the server's functionality into modules which have as little as possible to do with the monolithic server core. The only way to reconcile these goals is to move the handling of most commands from the central server into the modules.

However, just giving the modules command tables is not enough to divorce them completely from the server core. The server has to remember the commands in order to act on them later. That involves maintaining data which is private to the modules, and which can be either per-server, or per-directory. Most things are per-directory, including in particular access control and authorization information, but also information on how to determine file types from suffixes, which can be modified by AddType and DefaultType directives, and so forth. In general, the governing philosophy is that anything which can be made configurable by directory should be; per-server information is generally used in the standard set of modules for information like Aliases and Redirects which come into play before the request is tied to a particular place in the underlying file system.

Another requirement for emulating the NCSA server is being able to handle the per-directory configuration files, generally called .htaccess files, though even in the NCSA server they can contain directives which have nothing at all to do with access control. Accordingly, after URI -> filename translation, but before performing any other phase, the server walks down the directory hierarchy of the underlying filesystem, following the translated pathname, to read any .htaccess files which might be present. The information which is read in then has to be merged with the applicable information from the server's own config files (either from the sections in access.conf, or from defaults in srm.conf, which actually behaves for most purposes almost exactly like ).

Finally, after having served a request which involved reading .htaccess files, we need to discard the storage allocated for handling them. That is solved the same way it is solved wherever else similar problems come up, by tying those structures to the per-transaction resource pool.

Creating Htaccess Files

Htaccess files use the default filename ".htaccess" but any unix-style file name can be specified from the main server config using the AccessFileName directive. The file isn't .htaccess.txt, its literally just named .htaccess.

In a Windows Environment like the one I use for work, you can change how Windows opens and views .htaccess files by modifying the Folder Options in explorer. As you can see, on my computer files ending in .htaccess are recognized as having the HTACCESS extension and are handled/opened by Adobe Dreamweaver CS4.

Htaccess Scope

Unlike the main server configuration files like httpd.conf, Htaccess files are read on every request therefore changes in these files take immediate effect. Apache searches all directories and subdirectories that are htaccess-enabled for an .htaccess file which results in performance loss due to file accesses. I've never noticed a performance loss but OTOH, I know how to use them. If you do have access to your main server configuration file, you should of course use that instead, and lucky for you ALL the .htaccess tricks and examples can be used there as well (just not vice versa).

Htaccess File Syntax

Htaccess files follow the same syntax as the main Apache configuration files, for powerusers here's an apache.vim for VI. The one main difference is the context of the directive, which means whether or not that directive is ALLOWED to be used inside of an .htaccess file. Htaccess files are incredibly powerful, and can also be very dangerous as some directives allowed in the main configuration files would allow users/customers to completely bypass security/bandwidth-limits/resource-limits/file-permissions, etc.. About 1/4 of all Apache directives cannot be used inside an .htaccess file (also known as a per-directory context config). The Apache Developers are well-regarded throughout the world as being among some of the best programmers, ever. To enable a disallowed directive inside a .htaccess file would require modifying the source code and re-compiling the server (which they allow and encourage if you are the owner/admin).

Htaccess Directives

Don't ask why, but I personally downloaded each major/beta release of the Apache HTTPD source code from version 1.3.0 to version 2.2.10 (all 63 Apache versions!), then I configured and compiled each version for a custom HTTPD installation built from source. This allowed me to find every directive allowed in .htaccess files for each particular version, which has never been done before, or since. YES! I think that is so cool..

An .htaccess directive is basically a command that is specific to a module or builtin to the core that performs a specific task or sets a specific setting for how Apache serves your WebSite. Directives placed in Htaccess files apply to the directory they are in, and all sub-directories. Here's the 3 top links (official Apache Docs) you will repeatedly use, bookmark/print/save them.

Main Server Config Examples

Now lets take a look at some htaccess examples to get a feel for the syntax and some general ideas at the capabilities. Some of the best examples for .htaccess files are included with Apache for main server config files, so lets take a quick look at a couple of them on our way down to the actual .htaccess examples further down the page (this site has thousands, take your time). The basic syntax is a line starting with # is a comment, everything else are directives followed by the directive argument.

httpd-multilang-errordoc.conf: The configuration below implements multi-language error documents through content-negotiation

Here are the rest of them if you wanna take a look. (httpd-mpm.conf, httpd-default.conf, httpd-ssl.conf, httpd-info.conf, httpd-vhosts.conf, httpd-dav.conf)

Example .htaccess Code Snippets

Here are some specific examples, this is the most popular section of this page. Updated frequently.

Redirect Everyone Except IP address to alternate page

ErrorDocument 403 http://www.yahoo.com/
Order deny,allow
Deny from all
Allow from 208.113.134.190

When developing sites

This lets google crawl the page, lets me access without a password, and lets my client access the page WITH a password. It also allows for XHTML and CSS validation! (w3.org)

AuthName "Under Development"
AuthUserFile /home/sitename.com/.htpasswd
AuthType basic
Require valid-user
Order deny,allow
Deny from all
Allow from 208.113.134.190 w3.org htmlhelp.com googlebot.com
Satisfy Any

Fix double-login prompt

Redirect non-https requests to https server and ensure that .htpasswd authorization can only be entered across HTTPS

SSLOptions +StrictRequire
SSLRequireSSL
SSLRequire %{HTTP_HOST} eq "askapache.com"
ErrorDocument 403 https://askapache.com

Set Timezone of the Server (GMT)

SetEnv TZ America/Indianapolis

Administrator Email for ErrorDocument

SetEnv SERVER_ADMIN webmaster@google.com

`ServerSignature` for `ErrorDocument`

ServerSignature off | on | email

Charset and Language headers

Article: Setting Charset in htaccess, and article by Richard Ishida

AddDefaultCharset UTF-8
DefaultLanguage en-US

Disallow Script Execution

Options -ExecCGI
AddHandler cgi-script .php .pl .py .jsp .asp .htm .shtml .sh .cgi

Deny Request Methods

RewriteCond %{REQUEST_METHOD} !^(GET|HEAD|OPTIONS|POST|PUT)
RewriteRule .* - [F]

Force "File Save As" Prompt

AddType application/octet-stream .avi .mpg .mov .pdf .xls .mp4

Show CGI Source Code

RemoveHandler cgi-script .pl .py .cgi
AddType text/plain .pl .py .cgi

Serve all .pdf files on your site using .htaccess and mod_rewrite with the php script.

RewriteEngine On
RewriteBase /
RewriteCond %{REQUEST_FILENAME} -f
RewriteRule ^(.+)\.pdf$  /cgi-bin/pdf.php?file=$1 [L,NC,QSA]

Rewrite to www

RewriteCond %{REQUEST_URI} !^/(robots\.txt|favicon\.ico|sitemap\.xml)$
RewriteCond %{HTTP_HOST} !^www\.askapache\.com$ [NC]
RewriteRule ^(.*)$ http://www.askapache.com/$1 [R=301,L]

Rewrite to www dynamically

RewriteCond %{REQUEST_URI} !^/robots\.txt$ [NC]
RewriteCond %{HTTP_HOST} !^www\.[a-z-]+\.[a-z]{2,6} [NC]
RewriteCond %{HTTP_HOST} ([a-z-]+\.[a-z]{2,6})$   [NC]
RewriteRule ^/(.*)$ http://%1/$1 [R=301,L]

301 Redirect Old File

Redirect 301 /old/file.html http://www.askapache.com/new/file.html

301 Redirect Entire Directory

RedirectMatch 301 /blog(.*) http://www.askapache.com/$1

Protecting your php.cgi


Order Deny,Allow
Deny from All
Allow from env=REDIRECT_STATUS

Set Cookie based on Request

This code sends the Set-Cookie header to create a cookie on the client with the value of a matching item in 2nd parantheses.

RewriteEngine On
RewriteBase /
RewriteRule ^(.*)(de|es|fr|it|ja|ru|en)/$ - [co=lang:$2:.askapache.com:7200:/]

Set Cookie with env variable

Header set Set-Cookie "language=%{lang}e; path=/;" env=lang

Custom ErrorDocuments

ErrorDocument 100 /100_CONTINUE
ErrorDocument 101 /101_SWITCHING_PROTOCOLS
ErrorDocument 102 /102_PROCESSING
ErrorDocument 200 /200_OK
ErrorDocument 201 /201_CREATED
ErrorDocument 202 /202_ACCEPTED
ErrorDocument 203 /203_NON_AUTHORITATIVE
ErrorDocument 204 /204_NO_CONTENT
ErrorDocument 205 /205_RESET_CONTENT
ErrorDocument 206 /206_PARTIAL_CONTENT
ErrorDocument 207 /207_MULTI_STATUS
ErrorDocument 300 /300_MULTIPLE_CHOICES
ErrorDocument 301 /301_MOVED_PERMANENTLY
ErrorDocument 302 /302_MOVED_TEMPORARILY
ErrorDocument 303 /303_SEE_OTHER
ErrorDocument 304 /304_NOT_MODIFIED
ErrorDocument 305 /305_USE_PROXY
ErrorDocument 307 /307_TEMPORARY_REDIRECT
ErrorDocument 400 /400_BAD_REQUEST
ErrorDocument 401 /401_UNAUTHORIZED
ErrorDocument 402 /402_PAYMENT_REQUIRED
ErrorDocument 403 /403_FORBIDDEN
ErrorDocument 404 /404_NOT_FOUND
 
ErrorDocument 405 /405_METHOD_NOT_ALLOWED
ErrorDocument 406 /406_NOT_ACCEPTABLE
ErrorDocument 407 /407_PROXY_AUTHENTICATION_REQUIRED
ErrorDocument 408 /408_REQUEST_TIME_OUT
ErrorDocument 409 /409_CONFLICT
ErrorDocument 410 /410_GONE
ErrorDocument 411 /411_LENGTH_REQUIRED
ErrorDocument 412 /412_PRECONDITION_FAILED
ErrorDocument 413 /413_REQUEST_ENTITY_TOO_LARGE
ErrorDocument 414 /414_REQUEST_URI_TOO_LARGE
ErrorDocument 415 /415_UNSUPPORTED_MEDIA_TYPE
ErrorDocument 416 /416_RANGE_NOT_SATISFIABLE
ErrorDocument 417 /417_EXPECTATION_FAILED
ErrorDocument 422 /422_UNPROCESSABLE_ENTITY
ErrorDocument 423 /423_LOCKED
ErrorDocument 424 /424_FAILED_DEPENDENCY
ErrorDocument 426 /426_UPGRADE_REQUIRED
ErrorDocument 500 /500_INTERNAL_SERVER_ERROR
ErrorDocument 501 /501_NOT_IMPLEMENTED
ErrorDocument 502 /502_BAD_GATEWAY
ErrorDocument 503 /503_SERVICE_UNAVAILABLE
ErrorDocument 504 /504_GATEWAY_TIME_OUT
ErrorDocument 505 /505_VERSION_NOT_SUPPORTED
ErrorDocument 506 /506_VARIANT_ALSO_VARIES
ErrorDocument 507 /507_INSUFFICIENT_STORAGE
ErrorDocument 510 /510_NOT_EXTENDED

Implementing a Caching Scheme with .htaccess

# year

Header set Cache-Control "public"
Header set Expires "Thu, 15 Apr 2010 20:00:00 GMT"
Header unset Last-Modified

#2 hours

Header set Cache-Control "max-age=7200, must-revalidate"


SetOutputFilter DEFLATE
Header set Expires "Thu, 15 Apr 2010 20:00:00 GMT"

Password Protect single file


AuthName "Prompt"
AuthType Basic
AuthUserFile /web/askapache.com/.htpasswd
Require valid-user

Password Protect multiple files


AuthName "Development"
AuthUserFile /.htpasswd
AuthType basic
Require valid-user

Send Custom Headers

Header set P3P "policyref="http://www.askapache.com/w3c/p3p.xml""
Header set X-Pingback "http://www.askapache.com/xmlrpc.php"
Header set Content-Language "en-US"
Header set Vary "Accept-Encoding"

Blocking based on User-Agent Header

SetEnvIfNoCase ^User-Agent$ .*(craftbot|download|extract|stripper|sucker|ninja|clshttp|webspider|leacher|collector|grabber|webpictures) HTTP_SAFE_BADBOT
SetEnvIfNoCase ^User-Agent$ .*(libwww-perl|aesop_com_spiderman) HTTP_SAFE_BADBOT
Deny from env=HTTP_SAFE_BADBOT

Blocking with RewriteCond

RewriteCond %{HTTP_USER_AGENT} ^.*(craftbot|download|extract|stripper|sucker|ninja|clshttp|webspider|leacher|collector|grabber|webpictures).*$ [NC]
RewriteRule . - [F,L]

.htaccess for mod_php

SetEnv PHPRC /location/todir/containing/phpinifile

.htaccess for php as cgi

AddHandler php-cgi .php .htm
Action php-cgi /cgi-bin/php5.cgi

Shell wrapper for custom php.ini

#!/bin/sh
export PHP_FCGI_CHILDREN=3
exec php5.cgi -c /abs/php5/php.ini

Add values from HTTP Headers

SetEnvIfNoCase ^If-Modified-Since$ "(.+)" HTTP_IF_MODIFIED_SINCE=$1
SetEnvIfNoCase ^If-None-Match$ "(.+)" HTTP_IF_NONE_MATCH=$1
SetEnvIfNoCase ^Cache-Control$ "(.+)" HTTP_CACHE_CONTROL=$1
SetEnvIfNoCase ^Connection$ "(.+)" HTTP_CONNECTION=$1
SetEnvIfNoCase ^Keep-Alive$ "(.+)" HTTP_KEEP_ALIVE=$1
SetEnvIfNoCase ^Authorization$ "(.+)" HTTP_AUTHORIZATION=$1
SetEnvIfNoCase ^Cookie$ "(.+)" HTTP_MY_COOKIE=$1

Stop hotlinking

RewriteCond %{HTTP_REFERER} !^$
RewriteCond %{HTTP_REFERER} !^http://(www\.)?askapache\.com/.*$ [NC]
RewriteRule \.(gif|jpg|swf|flv|png)$ http://www.askapache.com/feed.gif [R=302,L]

Turn logging off for IP

SecFilterSelective REMOTE_ADDR "208\.113\.183\.103" "nolog,noauditlog,pass"

Turn logging on for IP

SecFilterSelective REMOTE_ADDR "!^208\.113\.183\.103" "nolog,noauditlog,pass"
SecFilterSelective REMOTE_ADDR "208\.113\.183\.103" "log,auditlog,pass"

Example .htaccess Files

Here are some samples and examples taken from different .htaccess files I've used over the years. Specific solutions are farther down on this page and throughout the site.

# Set the Time Zone of your Server
SetEnv TZ America/Indianapolis
 
# ServerAdmin:  This address appears on some server-generated pages, such as error documents.
SetEnv SERVER_ADMIN webmaster@askapache.com
 
# Possible values for the Options directive are "None", "All", or any combination of:
#  Indexes Includes FollowSymLinks SymLinksifOwnerMatch ExecCGI MultiViews
Options -ExecCGI -MultiViews -Includes -Indexes FollowSymLinks
 
# DirectoryIndex: sets the file that Apache will serve if a directory is requested.
DirectoryIndex index.html index.php /index.php
 
# Action lets you define media types that will execute a script whenever
# a matching file is called. This eliminates the need for repeated URL
# pathnames for oft-used CGI file processors.
# Format: Action media/type /cgi-script/location
# Format: Action handler-name /cgi-script/location
#
Action php5-cgi /bin/php.cgi
 
# AddHandler allows you to map certain file extensions to "handlers":
# actions unrelated to filetype. These can be either built into the server
# or added with the Action directive (see below)
#
# To use CGI scripts outside of ScriptAliased directories:
# (You will also need to add "ExecCGI" to the "Options" directive.)
#
AddHandler php-cgi .php .inc
 
# Commonly used filename extensions to character sets.
AddDefaultCharset UTF-8
 
# AddType allows you to add to or override the MIME configuration
AddType 'application/rdf+xml; charset=UTF-8' .rdf
AddType 'application/xhtml+xml; charset=UTF-8' .xhtml
AddType 'application/xhtml+xml; charset=UTF-8' .xhtml.gz
AddType 'text/html; charset=UTF-8' .html
AddType 'text/html; charset=UTF-8' .html.gz
AddType application/octet-stream .rar .chm .bz2 .tgz .msi .pdf .exe
AddType application/vnd.ms-excel .csv
AddType application/x-httpd-php-source .phps
AddType application/x-pilot .prc .pdb
AddType application/x-shockwave-flash .swf
AddType application/xrds+xml .xrdf
AddType text/plain .ini .sh .bsh .bash .awk .nawk .gawk .csh .var .c .in .h .asc .md5 .sha .sha1
AddType video/x-flv .flv
 
# AddEncoding allows you to have certain browsers uncompress information on the fly. Note: Not all browsers support this.
AddEncoding x-compress .Z
AddEncoding x-gzip .gz .tgz
 
# DefaultType: the default MIME type the server will use for a document.
DefaultType text/html
 
# Optionally add a line containing the server version and virtual host
# name to server-generated pages (internal error documents, FTP directory
# listings, mod_status and mod_info output etc., but not CGI generated
# documents or custom error documents).
# Set to "EMail" to also include a mailto: link to the ServerAdmin.
# Set to one of:  On | Off | EMail
ServerSignature Off

## MAIN DEFAULTS
Options +ExecCGI -Indexes
DirectoryIndex index.html index.htm index.php
DefaultLanguage en-US
AddDefaultCharset UTF-8
ServerSignature Off
 
## ENVIRONMENT VARIABLES
SetEnv PHPRC /webroot/includes
SetEnv TZ America/Indianapolis
 
SetEnv SERVER_ADMIN webmaster@askapache.com
 
## MIME TYPES
AddType video/x-flv .flv
AddType application/x-shockwave-flash .swf
AddType image/x-icon .ico
 
## FORCE FILE TO DOWNLOAD INSTEAD OF APPEAR IN BROWSER
# http://www.htaccesselite.com/addtype-addhandler-action-vf6.html
AddType application/octet-stream .mov .mp3 .zip
 
## ERRORDOCUMENTS
# http://askapache.com/htaccess/apache-status-code-headers-errordocument.html
ErrorDocument 400 /e400/
ErrorDocument 401 /e401/
ErrorDocument 402 /e402/
ErrorDocument 403 /e403/
ErrorDocument 404 /e404/
 
# Handlers be builtin, included in a module, or added with Action directive
# default-handler: default, handles static content (core)
#   send-as-is: Send file with HTTP headers (mod_asis)
#   cgi-script: treat file as CGI script (mod_cgi)
#    imap-file: Parse as an imagemap rule file (mod_imap)
#   server-info: Get server config info (mod_info)
#  server-status: Get server status report (mod_status)
#    type-map: type map file for content negotiation (mod_negotiation)
#  fastcgi-script: treat file as fastcgi script (mod_fastcgi)
#
# http://www.askapache.com/php/custom-phpini-tips-and-tricks.html
 
## PARSE AS CGI
AddHandler cgi-script .cgi .pl .spl
 
## RUN PHP AS APACHE MODULE
AddHandler application/x-httpd-php .php .htm
 
## RUN PHP AS CGI
AddHandler php-cgi .php .htm
 
## CGI PHP WRAPPER FOR CUSTOM PHP.INI
AddHandler phpini-cgi .php .htm
Action phpini-cgi /cgi-bin/php5-custom-ini.cgi
 
## FAST-CGI SETUP WITH PHP-CGI WRAPPER FOR CUSTOM PHP.INI
AddHandler fastcgi-script .fcgi
AddHandler php-cgi .php .htm
Action php-cgi /cgi-bin/php5-wrapper.fcgi
 
## CUSTOM PHP CGI BINARY SETUP
AddHandler php-cgi .php .htm
Action php-cgi /cgi-bin/php.cgi
 
## PROCESS SPECIFIC FILETYPES WITH CGI-SCRIPT
Action image/gif /cgi-bin/img-create.cgi
 
## CREATE CUSTOM HANDLER FOR SPECIFIC FILE EXTENSIONS
AddHandler custom-processor .ssp
Action custom-processor /cgi-bin/myprocessor.cgi
 
### HEADER CACHING
# http://www.askapache.com/htaccess/speed-up-sites-with-htaccess-caching.html

Header set Cache-Control "max-age=2592000"


Header set Cache-Control "max-age=604800"


Header set Cache-Control "max-age=600"


Header unset Cache-Control

 
## ALTERNATE EXPIRES CACHING
# htaccesselite.com/d/use-htaccess-to-speed-up-your-site-discussion-vt67.html
ExpiresActive On
ExpiresDefault A604800
ExpiresByType image/x-icon A2592000
ExpiresByType application/x-javascript A2592000
ExpiresByType text/css A2592000
ExpiresByType text/html A300
 

ExpiresActive Off

 
## META HTTP-EQUIV REPLACEMENTS

Header set imagetoolbar "no"

Here are some default MOD_REWRITE code examples.

## REWRITE DEFAULTS
RewriteEngine On
RewriteBase /
 
## REQUIRE SUBDOMAIN
RewriteCond %{HTTP_HOST} !^$
RewriteCond %{HTTP_HOST} !^subdomain\.askapache\.com$ [NC]
RewriteRule ^/(.*)$ http://subdomain.askapache.com/$1 [L,R=301]
 
## SEO REWRITES
RewriteRule ^(.*)/ve/(.*)$ $1/voluntary-employee/$2 [L,R=301]
RewriteRule ^(.*)/hsa/(.*)$ $1/health-saving-account/$2 [L,R=301]
 
## WORDPRESS
RewriteCond %{REQUEST_FILENAME} !-f  # Existing File
RewriteCond %{REQUEST_FILENAME} !-d  # Existing Directory
RewriteRule . /index.php [L]
 
## ALTERNATIVE ANTI-HOTLINKING
RewriteCond %{HTTP_REFERER} !^$
RewriteCond %{HTTP_REFERER} !^http://(subdomain\.)?askapache\.com/.*$ [NC]
RewriteRule ^.*\.(bmp|tif|gif|jpg|jpeg|jpe|png)$ - [F]
 
## REDIRECT HOTLINKERS
RewriteCond %{HTTP_REFERER} !^$
RewriteCond %{HTTP_REFERER} !^http://(subdomain\.)?askapache\.com/.*$ [NC]
RewriteRule ^.*\.(bmp|tif|gif|jpg|jpeg|jpe|png)$ http://google.com [R]
 
## DENY REQUEST BASED ON REQUEST METHOD
RewriteCond %{REQUEST_METHOD} ^(TRACE|TRACK|OPTIONS|HEAD)$ [NC]
RewriteRule ^.*$ - [F]
 
## REDIRECT UPLOADS
RewriteCond %{REQUEST_METHOD} ^(PUT|POST)$ [NC]
RewriteRule ^(.*)$ /cgi-bin/form-upload-processor.cgi?p=$1 [L,QSA]
 
## REQUIRE SSL EVEN WHEN MOD_SSL IS NOT LOADED
RewriteCond %{HTTPS} !=on [NC]
RewriteRule ^.*$ https://%{SERVER_NAME}%{REQUEST_URI} [R,L]
 
### ALTERNATATIVE TO USING ERRORDOCUMENT
# http://www.htaccesselite.com/d/htaccess-errordocument-examples-vt11.html
RewriteCond %{REQUEST_FILENAME} !-f
RewriteCond %{REQUEST_FILENAME} !-d
RewriteRule ^.*$ /error.php [L]
 
## SEO REDIRECTS
Redirect 301 /2006/oldfile.html http://subdomain.askapache.com/newfile.html
RedirectMatch 301 /o/(.*)$ http://subdomain.askapache.com/s/dl/$1

Examples of protecting your files and securing with password protection.

#
# Require (user|group|valid-user) (username|groupname)
#
## BASIC PASSWORD PROTECTION
AuthType basic
AuthName "prompt"
AuthUserFile /.htpasswd
AuthGroupFile /dev/null
Require valid-user
 
## ALLOW FROM IP OR VALID PASSWORD
Require valid-user
Allow from 192.168.1.23
Satisfy Any
 
## PROTECT FILES

Order Allow,Deny
Deny from all

 
## PREVENT HOTLINKING
SetEnvIfNoCase Referer "^http://subdomain.askapache.com/" good
SetEnvIfNoCase Referer "^$" good

Order Deny,Allow
Deny from all
Allow from env=good
ErrorDocument 403 http://www.google.com/intl/en_ALL/images/logo.gif
ErrorDocument 403 /images/you_bad_hotlinker.gif

 
## LIMIT UPLOAD FILE SIZE TO PROTECT AGAINST DOS ATTACK
#bytes, 0-2147483647(2GB)
LimitRequestBody 10240000
 
## MOST SECURE WAY TO REQUIRE SSL
# http://www.askapache.com/htaccess/apache-ssl-in-htaccess-examples.html
SSLOptions +StrictRequire
SSLRequireSSL
SSLRequire %{HTTP_HOST} eq "askapache.com"
ErrorDocument 403 https://askapache.com
 
## COMBINED DEVELOPER HTACCESS CODE-USE THIS

Header set Cache-Control "max-age=5"

AuthType basic
AuthName "Ooops! Temporarily Under Construction..."
AuthUserFile /.htpasswd
AuthGroupFile /dev/null
Require valid-user      # password prompt for everyone else
Order Deny,Allow
Deny from all
Allow from 192.168.64.5   # Your, the developers IP address
Allow from w3.org      # css/xhtml check jigsaw.w3.org/css-validator/
Allow from googlebot.com   # Allows google to crawl your pages
Satisfy Any        # no password required if host/ip is Allowed
 
## DONT HAVE TO EMPTY CACHE OR RELOAD TO SEE CHANGES
ExpiresDefault A5 #If using mod_expires

Header set Cache-Control "max-age=5"

 
## ALLOW ACCESS WITH PASSWORD OR NO PASSWORD FOR SPECIFIC IP/HOSTS
AuthType basic
AuthName "Ooops! Temporarily Under Construction..."
AuthUserFile /.htpasswd
AuthGroupFile /dev/null
Require valid-user      # password prompt for everyone else
Order Deny,Allow
Deny from all
Allow from 192.168.64.5   # Your, the developers IP address
Allow from w3.org      # css/xhtml check jigsaw.w3.org/css-validator/
Allow from googlebot.com   # Allows google to crawl your pages
Satisfy Any        # no password required if host/ip is Allowed

Advanced Mod_Rewrites

Here are some specific htaccess examples taken mostly from my WordPress Password Protection plugin, which does alot more than password protection as you will see from the following mod_rewrite examples. These are a few of the mod_rewrite uses that BlogSecurity declared pushed the boundaries of Mod_Rewrite! Some of these snippets are quite exotic and unlike anything you may have seen before, also only for those who understand them as they can kill a website pretty quick.

Directory Protection

Enable the DirectoryIndex Protection, preventing directory index listings and defaulting. [Disable]

Options -Indexes
DirectoryIndex index.html index.php /index.php

Password Protect wp-login.php

Requires a valid user/pass to access the login page[401]


Order Deny,Allow
Deny from All
Satisfy Any
AuthName "Protected By AskApache"
AuthUserFile /web/askapache.com/.htpasswda1
AuthType Basic
Require valid-user

Password Protect wp-admin

Requires a valid user/pass to access any non-static (css, js, images) file in this directory.[401]

Options -ExecCGI -Indexes +FollowSymLinks -Includes
DirectoryIndex index.php /index.php
Order Deny,Allow
Deny from All
Satisfy Any
AuthName "Protected By AskApache"
AuthUserFile /web/askapache.com/.htpasswda1
AuthType Basic
Require valid-user

Allow from All



SecFilterEngine Off

Allow from All

Protect wp-content

Denies any Direct request for files ending in .php with a 403 Forbidden.. May break plugins/themes [401]

RewriteCond %{THE_REQUEST} ^[A-Z]{3,9}\ /wp-content/.*$ [NC]
RewriteCond %{REQUEST_FILENAME} !^.+flexible-upload-wp25js.php$
RewriteCond %{REQUEST_FILENAME} ^.+\.(php|html|htm|txt)$
RewriteRule .* - [F,NS,L]

Protect wp-includes

Denies any Direct request for files ending in .php with a 403 Forbidden.. May break plugins/themes [403]

RewriteCond %{THE_REQUEST} ^[A-Z]{3,9}\ /wp-includes/.*$ [NC]
RewriteCond %{THE_REQUEST} !^[A-Z]{3,9}\ /wp-includes/js/.+/.+\ HTTP/ [NC]
RewriteCond %{REQUEST_FILENAME} ^.+\.php$
RewriteRule .* - [F,NS,L]

Common Exploits

Block common exploit requests with 403 Forbidden. These can help alot, may break some plugins. [403]

RewriteCond %{REQUEST_URI} !^/(wp-login.php|wp-admin/|wp-content/plugins/|wp-includes/).* [NC]
RewriteCond %{THE_REQUEST} ^[A-Z]{3,9}\ ///.*\ HTTP/ [NC,OR]
RewriteCond %{THE_REQUEST} ^[A-Z]{3,9}\ /.*\?\=?(http|ftp|ssl|https):/.*\ HTTP/ [NC,OR]
RewriteCond %{THE_REQUEST} ^[A-Z]{3,9}\ /.*\?\?.*\ HTTP/ [NC,OR]
RewriteCond %{THE_REQUEST} ^[A-Z]{3,9}\ /.*\.(asp|ini|dll).*\ HTTP/ [NC,OR]
RewriteCond %{THE_REQUEST} ^[A-Z]{3,9}\ /.*\.(htpasswd|htaccess|aahtpasswd).*\ HTTP/ [NC]
RewriteRule .* - [F,NS,L]

Stop Hotlinking

Denies any request for static files (images, css, etc) if referrer is not local site or empty. [403]

RewriteCond %{HTTP_REFERER} !^$
RewriteCond %{REQUEST_URI} !^/(wp-login.php|wp-admin/|wp-content/plugins/|wp-includes/).* [NC]
RewriteCond %{HTTP_REFERER} !^http://www.askapache.com.*$ [NC]
RewriteRule \.(ico|pdf|flv|jpg|jpeg|mp3|mpg|mp4|mov|wav|wmv|png|gif|swf|css|js)$ - [F,NS,L]

Safe Request Methods

Denies any request not using GET,PROPFIND,POST,OPTIONS,PUT,HEAD[403]

RewriteCond %{REQUEST_METHOD} !^(GET|HEAD|POST|PROPFIND|OPTIONS|PUT)$ [NC]
RewriteRule .* - [F,NS,L]

Forbid Proxies

Denies any POST Request using a Proxy Server. Can still access site, but not comment. See Perishable Press [403]

RewriteCond %{REQUEST_METHOD} =POST
RewriteCond %{HTTP:VIA}%{HTTP:FORWARDED}%{HTTP:USERAGENT_VIA}%{HTTP:X_FORWARDED_FOR}%{HTTP:PROXY_CONNECTION} !^$ [OR]
RewriteCond %{HTTP:XPROXY_CONNECTION}%{HTTP:HTTP_PC_REMOTE_ADDR}%{HTTP:HTTP_CLIENT_IP} !^$
RewriteCond %{REQUEST_URI} !^/(wp-login.php|wp-admin/|wp-content/plugins/|wp-includes/).* [NC]
RewriteRule .* - [F,NS,L]

Real wp-comments-post.php

Denies any POST attempt made to a non-existing wp-comments-post.php[403]

RewriteCond %{THE_REQUEST} ^[A-Z]{3,9}\ /.*/wp-comments-post\.php.*\ HTTP/ [NC]
RewriteRule .* - [F,NS,L]

HTTP PROTOCOL

Denies any badly formed HTTP PROTOCOL in the request, 0.9, 1.0, and 1.1 only[403]

RewriteCond %{THE_REQUEST} !^[A-Z]{3,9}\ .+\ HTTP/(0\.9|1\.0|1\.1) [NC]
RewriteRule .* - [F,NS,L]

SPECIFY CHARACTERS

Denies any request for a url containing characters other than "a-zA-Z0-9.+/-?=&" - REALLY helps but may break your site depending on your links. [403]

RewriteCond %{REQUEST_URI} !^/(wp-login.php|wp-admin/|wp-content/plugins/|wp-includes/).* [NC]
RewriteCond %{THE_REQUEST} !^[A-Z]{3,9}\ [a-zA-Z0-9\.\+_/\-\?\=\&]+\ HTTP/ [NC]
RewriteRule .* - [F,NS,L]

BAD Content Length

Denies any POST request that doesnt have a Content-Length Header[403]

RewriteCond %{REQUEST_METHOD} =POST
RewriteCond %{HTTP:Content-Length} ^$
RewriteCond %{REQUEST_URI} !^/(wp-admin/|wp-content/plugins/|wp-includes/).* [NC]
RewriteRule .* - [F,NS,L]

BAD Content Type

Denies any POST request with a content type other than application/x-www-form-urlencoded|multipart/form-data[403]

RewriteCond %{REQUEST_METHOD} =POST
RewriteCond %{HTTP:Content-Type} !^(application/x-www-form-urlencoded|multipart/form-data.*(boundary.*)?)$ [NC]
RewriteCond %{REQUEST_URI} !^/(wp-login.php|wp-admin/|wp-content/plugins/|wp-includes/).* [NC]
RewriteRule .* - [F,NS,L]

Missing HTTP_HOST

Denies requests that dont contain a HTTP HOST Header.[403]

RewriteCond %{REQUEST_URI} !^/(wp-login.php|wp-admin/|wp-content/plugins/|wp-includes/).* [NC]
RewriteCond %{HTTP_HOST} ^$
RewriteRule .* - [F,NS,L]

Bogus Graphics Exploit

Denies obvious exploit using bogus graphics[403]

RewriteCond %{HTTP:Content-Disposition} \.php [NC]
RewriteCond %{HTTP:Content-Type} image/.+ [NC]
RewriteRule .* - [F,NS,L]

No UserAgent, Not POST

Denies POST requests by blank user-agents. May prevent a small number of visitors from POSTING. [403]

RewriteCond %{REQUEST_METHOD} =POST
RewriteCond %{HTTP_USER_AGENT} ^-?$
RewriteCond %{REQUEST_URI} !^/(wp-login.php|wp-admin/|wp-content/plugins/|wp-includes/).* [NC]
RewriteRule .* - [F,NS,L]

No Referer, No Comment

Denies any comment attempt with a blank HTTP_REFERER field, highly indicative of spam. May prevent some visitors from POSTING. [403]

RewriteCond %{THE_REQUEST} ^[A-Z]{3,9}\ /.*/wp-comments-post\.php.*\ HTTP/ [NC]
RewriteCond %{HTTP_REFERER} ^-?$
RewriteRule .* - [F,NS,L]

Trackback Spam

Denies obvious trackback spam. See Holy Shmoly! [403]

RewriteCond %{REQUEST_METHOD} =POST
RewriteCond %{HTTP_USER_AGENT} ^.*(opera|mozilla|firefox|msie|safari).*$ [NC]
RewriteCond %{THE_REQUEST} ^[A-Z]{3,9}\ /.+/trackback/?\ HTTP/ [NC]
RewriteRule .* - [F,NS,L]

Map all URIs except those corresponding to existing files to a handler

RewriteEngine On
RewriteCond %{DOCUMENT_ROOT}%{REQUEST_URI} !-d
RewriteCond %{DOCUMENT_ROOT}%{REQUEST_URI} !-f
RewriteRule . /script.php

Map any request to a handler

In the case where all URIs should be sent to the same place (including potentially requests for static content) the method to use depends on the type of the handler. For php scripts, use: For other handlers such as php scripts, use:

RewriteEngine On
RewriteCond %{REQUEST_URI} !=/script.php
RewriteRule .* /script.php

And for CGI scripts:

ScriptAliasMatch .* /var/www/script.cgi

Map URIs corresponding to existing files to a handler instead

RewriteEngine On
RewriteCond %{DOCUMENT_ROOT}%{REQUEST_URI} -d [OR]
RewriteCond %{DOCUMENT_ROOT}%{REQUEST_URI} -f
RewriteCond %{REQUEST_URI} !=/script.php
RewriteRule .* /script.php

If the existing files you wish to have handled by your script have a common set of file extensions distinct from that of the hander, you can bypass mod_rewrite and use instead mod_actions. Let's say you want all .html and .tpl files to be dealt with by your script:

Action foo-action /script.php
AddHandler foo-action html tpl

Deny access if var=val contains the string foo.

RewriteCond %{QUERY_STRING} foo
RewriteRule ^/url - [F]

Removing the Query String

RewriteRule ^/url /url?

Adding to the Query String

Keep the existing query string using the Query String Append flag, but add var=val to the end.

RewriteRule ^/url /url?var=val [QSA]

Rewriting For Certain Query Strings

Rewrite URLs like http://askapache.com/url1?var=val to http://askapache.com/url2?var=val but don't rewrite if val isn't present.

RewriteCond %{QUERY_STRING} val
RewriteRule ^/url1 /url2

Modifying the Query String

Change any single instance of val in the query string to other_val when accessing /path. Note that %1 and %2 are back-references to the matched part of the regular expression in the previous RewriteCond.

RewriteCond %{QUERY_STRING} ^(.*)val(.*)$
RewriteRule /path /path?%1other_val%2

Best .htaccess Articles

.htaccess for Webmasters

Mod_Rewrite URL Rewriting

Undocumented techniques and methods will allow you to utilize mod_rewrite at an "expert level" by showing you how to unlock its secrets.

301 Redirects without mod_rewrite

Secure PHP with .htaccess

If you have a php.cgi or php.ini file in your /cgi-bin/ directory or other pub directory, try requesting them from your web browser. If your php.ini shows up or worse you are able to execute your php cgi, you'll need to secure it ASAP. This shows several ways to secure these files, and other interpreters like perl, fastCGI, bash, csh, etc.

.htaccess Cookie Manipulation

Fresh .htaccess code for you! Check out the Cookie Manipulation and environment variable usage with mod_rewrite! I also included a couple Mod_Security .htaccess examples. Enjoy!

.htaccess Caching

Password Protection and Authentication

Control HTTP Headers

Blocking Spam and bad Bots

Want to block a bad robot or web scraper using .htaccess files? Here are 2 methods that illustrate blocking 436 various user-agents. You can block them using either SetEnvIf methods, or by using Rewrite Blocks.

PHP htaccess tips

By using some cool .htaccess tricks we can control PHP to be run as a cgi or a module. If php is run as a cgi then we need to compile it ourselves or use .htaccess to force php to use a local php.ini file. If it is running as a module then we can use various directives supplied by that modules in .htaccess

HTTP to HTTPS Redirects with mod_rewrite

This is freaking sweet if you use SSL I promise you! Basically instead of having to check for HTTPS using a RewriteCond %{HTTPS} =on for every redirect that can be either HTTP or HTTPS, I set an environment variable once with the value "http" or "https" if HTTP or HTTPS is being used for that request, and use that env variable in the RewriteRule.

SSL in .htaccess

SetEnvIf and SetEnvIfNoCase in .htaccess

Site Security with .htaccess

chmod .htpasswd files 640, chmod .htaccess 644, php files 600, and chmod files that you really dont want people to see as 400. (NEVER chmod 777, try 766)

Merging Notes

The order of merging is:

(except regular expressions) and .htaccess done simultaneously (with .htaccess, if allowed, overriding )
(and )
and done simultaneously
and done simultaneously

My Favorite .htaccess Links

These are just some of my favorite .htaccess resources. I'm really into doing your own hacking to get knowledge and these links are all great resources in that respect. I'm really interested in new or unusual htaccess solutions or htaccess hacks using .htaccess files, so let me know if you find one.

NCSA HTTPd Tutorials

Robert Hansen
Here's a great Hardening HTAccess part 1, part 2, part 3 article that goes into detail about some of the rarer security applications for .htaccess files.

SAMAXES
Some very detailed and helpful .htaccess articles, such as the ".htaccess - gzip and cache your site for faster loading and bandwidth saving."

PerishablePress
Stupid .htaccess tricks is probably the best explanation online for many of the best .htaccess solutions, including many from this page. Unlike me they are fantastic writers, even for technical stuff they are very readable, so its a good blog to kick back on and read. They also have a fantastic article detailing how to block/deny specific requests using mod_rewrite.

BlogSecurity
Mostly a site for... blog security (which is really any web-app security) this blog has a few really impressive articles full of solid information for Hardening WordPress with .htaccess among more advanced topics that can be challenging but effective. This is a good site to subscribe to their feed, they publish plugin exploits and wordpress core vulnerabilities quite a bit.

Check-These
Oldschool security/unix dude with some incredibly detailed mod_rewrite tutorials, helped me the most when I first got into this, and a great guy too. See: Basic Mod_Rewrite Guide, and Advanced Mod_Rewrite Tutorial

Reaper-X
Alot of .htaccess tutorials and code. See: Hardening WordPress with Mod Rewrite and htaccess

jdMorgan
jdMorgan is the Moderator of the Apache Forum at WebmasterWorld, a great place for answers. In my experience he can answer any tough question pertaining to advanced .htaccess usage, haven't seen him stumped yet.

The W3C
Setting Charset in .htaccess is very informative.

Holy Shmoly!
A great blogger with analysis of attacks and spam. See: More ways to stop spammers and unwanted traffic.

Apache Week
A partnership with Red Hat back in the 90's that produced some excellent documentation.

Corz
Here's a resource that I consider to have some of the most creative and ingenious ideas for .htaccess files, although the author is somewhat of a character ;) Its a trip trying to navigate around the site, a fun trip. Its like nothing I've ever seen. There are only a few articles on the site, but the htaccess articles are very original and well-worth a look. See: htaccess tricks and tips.

Htaccess Directives

This is an AskApache.com exclusive you won't find this anywhere else.

Directory, DirectoryMatch, Files, FilesMatch, IfDefine, IfVersion, IfModule, Limit, LimitExcept, Location, LocationMatch, Proxy, ProxyMatch, VirtualHost, AcceptMutex, AcceptPathInfo, AccessFileName, Action, AddCharset, AddDefaultCharset, AddDescription, AddEncoding, AddHandler, AddInputFilter, AddLanguage, AddOutputFilter, AddOutputFilterByType, AddType, Alias, AliasMatch, AllowCONNECT, AllowOverride, Anonymous, Anonymous_Authoritative, Anonymous_LogEmail, Anonymous_MustGiveEmail, Anonymous_NoUserId, Anonymous_VerifyEmail, AuthAuthoritative, AuthDBMAuthoritative, AuthDBMGroupFile, AuthDBMType, AuthDBMUserFile, AuthDigestAlgorithm, AuthDigestDomain, AuthDigestFile, AuthDigestGroupFile, AuthDigestNcCheck, AuthDigestNonceFormat, AuthDigestNonceLifetime, AuthDigestQop, AuthDigestShmemSize, AuthGroupFile, AuthName, AuthType, AuthUserFile, BS2000Account, BrowserMatch, BrowserMatchNoCase, CacheNegotiatedDocs, CharsetDefault, CharsetOptions, CharsetSourceEnc, CheckSpelling, ContentDigest, CookieDomain, CookieExpires, CookieName, CookieStyle, CookieTracking, CoreDumpDirectory, DAV, DAVDepthInfinity, DAVMinTimeout, DefaultIcon, DefaultLanguage, DefaultType, DocumentRoot, ErrorDocument, ErrorLog, ExtFilterDefine, ExtFilterOptions, FancyIndexing, FileETag, ForceLanguagePriority, ForceType, GprofDir, Header, HeaderName, HostnameLookups, IdentityCheck, ImapBase, ImapDefault, ImapMenu, Include, IndexIgnore, LanguagePriority, LimitRequestBody, LimitRequestFields, LimitRequestFieldsize, LimitRequestLine, LimitXMLRequestBody, LockFile, LogLevel, MaxRequestsPerChild, MultiviewsMatch, NameVirtualHost, NoProxy, Options, PassEnv, PidFile, Port, ProxyBlock, ProxyDomain, ProxyErrorOverride, ProxyIOBufferSize, ProxyMaxForwards, ProxyPass, ProxyPassReverse, ProxyPreserveHost, ProxyReceiveBufferSize, ProxyRemote, ProxyRemoteMatch, ProxyRequests, ProxyTimeout, ProxyVia, RLimitCPU, RLimitMEM, RLimitNPROC, ReadmeName, Redirect, RedirectMatch, RedirectPermanent, RedirectTemp, RemoveCharset, RemoveEncoding, RemoveHandler, RemoveInputFilter, RemoveLanguage, RemoveOutputFilter, RemoveType, RequestHeader, Require, RewriteCond, RewriteRule, SSIEndTag, SSIErrorMsg, SSIStartTag, SSITimeFormat, SSIUndefinedEcho, Satisfy, ScoreBoardFile, Script, ScriptAlias, ScriptAliasMatch, ScriptInterpreterSource, ServerAdmin, ServerAlias, ServerName, ServerPath, ServerRoot, ServerSignature, ServerTokens, SetEnv, SetEnvIf, SetEnvIfNoCase, SetHandler, SetInputFilter, SetOutputFilter, Timeout, TypesConfig, UnsetEnv, UseCanonicalName, XBitHack, allow, deny, order, CGIMapExtension, EnableMMAP, ISAPIAppendLogToErrors, ISAPIAppendLogToQuery, ISAPICacheFile, ISAPIFakeAsync, ISAPILogNotSupported, ISAPIReadAheadBuffer, SSLLog, SSLLogLevel, MaxMemFree, ModMimeUsePathInfo, EnableSendfile, ProxyBadHeader, AllowEncodedSlashes, LimitInternalRecursion, EnableExceptionHook, TraceEnable, ProxyFtpDirCharset, AuthBasicAuthoritative, AuthBasicProvider, AuthDefaultAuthoritative, AuthDigestProvider, AuthLDAPAuthzEnabled, AuthLDAPBindDN, AuthLDAPBindPassword, AuthLDAPCharsetConfig, AuthLDAPCompareDNOnServer, AuthLDAPDereferenceAliases, AuthLDAPGroupAttribute, AuthLDAPGroupAttributeIsDN, AuthLDAPRemoteUserIsDN, AuthLDAPURL, AuthzDBMAuthoritative, AuthzDBMType, AuthzDefaultAuthoritative, AuthzGroupFileAuthoritative, AuthzLDAPAuthoritative, AuthzOwnerAuthoritative, AuthzUserAuthoritative, BalancerMember, DAVGenericLockDB, FilterChain, FilterDeclare, FilterProtocol, FilterProvider, FilterTrace, IdentityCheckTimeout, IndexStyleSheet, ProxyPassReverseCookieDomain, ProxyPassReverseCookiePath, ProxySet, ProxyStatus, ThreadStackSize, AcceptFilter, Protocol, AuthDBDUserPWQuery, AuthDBDUserRealmQuery, UseCanonicalPhysicalPort, CheckCaseOnly, AuthLDAPRemoteUserAttribute, ProxyPassMatch, SSIAccessEnable, Substitute, ProxyPassInterpolateEnv

Htaccess Modules

Here are most of the modules that come with Apache. Each one can have new commands that can be used in .htaccess file scopes.

mod_actions, mod_alias, mod_asis, mod_auth_basic, mod_auth_digest, mod_authn_anon, mod_authn_dbd, mod_authn_dbm, mod_authn_default, mod_authn_file, mod_authz_dbm, mod_authz_default, mod_authz_groupfile, mod_authz_host, mod_authz_owner, mod_authz_user, mod_autoindex, mod_cache, mod_cern_meta, mod_cgi, mod_dav, mod_dav_fs, mod_dbd, mod_deflate, mod_dir, mod_disk_cache, mod_dumpio, mod_env, mod_expires, mod_ext_filter, mod_file_cache, mod_filter, mod_headers, mod_ident, mod_imagemap, mod_include, mod_info, mod_log_config, mod_log_forensic, mod_logio, mod_mem_cache, mod_mime, mod_mime_magic, mod_negotiation, mod_proxy, mod_proxy_ajp, mod_proxy_balancer, mod_proxy_connect, mod_proxy_ftp, mod_proxy_http, mod_rewrite, mod_setenvif, mod_speling, mod_ssl, mod_status, mod_substitute, mod_unique_id, mod_userdir, mod_usertrack, mod_version, mod_vhost_alias

Htaccess Software

Apache HTTP Server comes with the following programs.

httpd: Apache hypertext transfer protocol server
apachectl: Apache HTTP server control interface
ab: Apache HTTP server benchmarking tool
apxs: APache eXtenSion tool
dbmmanage: Create and update user authentication files in DBM format for basic authentication
fcgistarter: Start a FastCGI program
htcacheclean: Clean up the disk cache
htdigest: Create and update user authentication files for digest authentication
htdbm: Manipulate DBM password databases.
htpasswd: Create and update user authentication files for basic authentication
httxt2dbm: Create dbm files for use with RewriteMap
logresolve: Resolve hostnames for IP-addresses in Apache logfiles
log_server_status: Periodically log the server's status
rotatelogs: Rotate Apache logs without having to kill the server
split-logfile: Split a multi-vhost logfile into per-host logfiles
suexec: Switch User For Exec

Technical Look at .htaccess

Source: Apache API notes

Per-directory configuration structures

Let's look out how all of this plays out in mod_mime.c, which defines the file typing handler which emulates the NCSA server's behavior of determining file types from suffixes. What we'll be looking at, here, is the code which implements the AddType and AddEncoding commands. These commands can appear in .htaccess files, so they must be handled in the module's private per-directory data, which in fact, consists of two separate tables for MIME types and encoding information, and is declared as follows:

table *forced_types;      /* Additional AddTyped stuff */
table *encoding_types;    /* Added with AddEncoding... */
mime_dir_config;

When the server is reading a configuration file, or section, which includes one of the MIME module's commands, it needs to create a mime_dir_config structure, so those commands have something to act on. It does this by invoking the function it finds in the module's `create per-dir config slot', with two arguments: the name of the directory to which this configuration information applies (or NULL for srm.conf), and a pointer to a resource pool in which the allocation should happen.

(If we are reading a .htaccess file, that resource pool is the per-request resource pool for the request; otherwise it is a resource pool which is used for configuration data, and cleared on restarts. Either way, it is important for the structure being created to vanish when the pool is cleared, by registering a cleanup on the pool if necessary).

For the MIME module, the per-dir config creation function just ap_pallocs the structure above, and a creates a couple of tables to fill it. That looks like this:

void *create_mime_dir_config (pool *p, char *dummy)
mime_dir_config *new = (mime_dir_config *) ap_palloc (p, sizeof(mime_dir_config));
 
new->forced_types = ap_make_table (p, 4);
new->encoding_types = ap_make_table (p, 4);

Now, suppose we've just read in a .htaccess file. We already have the per-directory configuration structure for the next directory up in the hierarchy. If the .htaccess file we just read in didn't have any AddType or AddEncoding commands, its per-directory config structure for the MIME module is still valid, and we can just use it. Otherwise, we need to merge the two structures somehow.

To do that, the server invokes the module's per-directory config merge function, if one is present. That function takes three arguments: the two structures being merged, and a resource pool in which to allocate the result. For the MIME module, all that needs to be done is overlay the tables from the new per-directory config structure with those from the parent:

void *merge_mime_dir_configs (pool *p, void *parent_dirv, void *subdirv)
mime_dir_config *parent_dir = (mime_dir_config *)parent_dirv;
mime_dir_config *subdir = (mime_dir_config *)subdirv;
mime_dir_config *new =  (mime_dir_config *)ap_palloc (p, sizeof(mime_dir_config));
new->forced_types = ap_overlay_tables (p, subdir->forced_types, parent_dir->forced_types);
new->encoding_types = ap_overlay_tables (p, subdir->encoding_types, parent_dir->encoding_types);

As a note --- if there is no per-directory merge function present, the server will just use the subdirectory's configuration info, and ignore the parent's. For some modules, that works just fine (e.g., for the includes module, whose per-directory configuration information consists solely of the state of the XBITHACK), and for those modules, you can just not declare one, and leave the corresponding structure slot in the module itself NULL.

Command handling

Now that we have these structures, we need to be able to figure out how to fill them. That involves processing the actual AddType and AddEncoding commands. To find commands, the server looks in the module's command table. That table contains information on how many arguments the commands take, and in what formats, where it is permitted, and so forth. That information is sufficient to allow the server to invoke most command-handling functions with pre-parsed arguments. Without further ado, let's look at the AddType command handler, which looks like this (the AddEncoding command looks basically the same, and won't be shown here):

char *add_type(cmd_parms *cmd, mime_dir_config *m, char *ct, char *ext)
if (*ext == '.') ++ext;
ap_table_set (m->forced_types, ext, ct);

This command handler is unusually simple. As you can see, it takes four arguments, two of which are pre-parsed arguments, the third being the per-directory configuration structure for the module in question, and the fourth being a pointer to a cmd_parms structure. That structure contains a bunch of arguments which are frequently of use to some, but not all, commands, including a resource pool (from which memory can be allocated, and to which cleanups should be tied), and the (virtual) server being configured, from which the module's per-server configuration data can be obtained if required.

Another way in which this particular command handler is unusually simple is that there are no error conditions which it can encounter. If there were, it could return an error message instead of NULL; this causes an error to be printed out on the server's stderr, followed by a quick exit, if it is in the main config files; for a .htaccess file, the syntax error is logged in the server error log (along with an indication of where it came from), and the request is bounced with a server error response (HTTP error status, code 500).

The MIME module's command table has entries for these commands, which look like this:

command_rec mime_cmds[] =
{ "AddType", add_type, NULL, OR_FILEINFO, TAKE2, "a mime type followed by a file extension" },
{ "AddEncoding", add_encoding, NULL, OR_FILEINFO, TAKE2, "an encoding (e.g., gzip), followed by a file extension" },

Here's a taste of that famous Apache source code that builds the directives allowed in .htaccess file context, the key that tells whether its enabled in .htaccess context is the DIR_CMD_PERMS and then the OR_FILEINFO, which means a directive is enabled dependent on the AllowOverride directive that is only allowed in the main config. First Apache 1.3.0, then Apache 2.2.10

mod_autoindex

AddIcon, add_icon, BY_PATH, DIR_CMD_PERMS, an icon URL followed by one or more filenames
AddIconByType, add_icon, BY_TYPE, DIR_CMD_PERMS, an icon URL followed by one or more MIME types
AddIconByEncoding, add_icon, BY_ENCODING, DIR_CMD_PERMS, an icon URL followed by one or more content encodings
AddAlt, add_alt, BY_PATH, DIR_CMD_PERMS, alternate descriptive text followed by one or more filenames
AddAltByType, add_alt, BY_TYPE, DIR_CMD_PERMS, alternate descriptive text followed by one or more MIME types
AddAltByEncoding, add_alt, BY_ENCODING, DIR_CMD_PERMS, alternate descriptive text followed by one or more content encodings
IndexOptions, add_opts, DIR_CMD_PERMS, RAW_ARGS, one or more index options
IndexIgnore, add_ignore, DIR_CMD_PERMS, ITERATE, one or more file extensions
AddDescription, add_desc, BY_PATH, DIR_CMD_PERMS, Descriptive text followed by one or more filenames
HeaderName, add_header, DIR_CMD_PERMS, TAKE1, a filename
ReadmeName, add_readme, DIR_CMD_PERMS, TAKE1, a filename
FancyIndexing, fancy_indexing, DIR_CMD_PERMS, FLAG, Limited to 'on' or 'off' (superseded by IndexOptions FancyIndexing)
DefaultIcon, ap_set_string_slot, (void *) XtOffsetOf(autoindex_config_rec, default_icon), DIR_CMD_PERMS, TAKE1, an icon URL

mod_rewrite

// mod_rewrite
RewriteEngine, cmd_rewriteengine, OR_FILEINFO, On or Off to enable or disable (default)
RewriteOptions, cmd_rewriteoptions, OR_FILEINFO, List of option strings to set
RewriteBase, cmd_rewritebase, OR_FILEINFO, the base URL of the per-directory context
RewriteCond, cmd_rewritecond, OR_FILEINFO, an input string and a to be applied regexp-pattern
RewriteRule, cmd_rewriterule, OR_FILEINFO, an URL-applied regexp-pattern and a substitution URL
RewriteMap, cmd_rewritemap, RSRC_CONF, a mapname and a filename
RewriteLock, cmd_rewritelock, RSRC_CONF, the filename of a lockfile used for inter-process synchronization
RewriteLog, cmd_rewritelog, RSRC_CONF, the filename of the rewriting logfile
RewriteLogLevel, cmd_rewriteloglevel, RSRC_CONF, the level of the rewriting logfile verbosity (0=none, 1=std, .., 9=max)
RewriteLog, fake_rewritelog, RSRC_CONF, [DISABLED] the filename of the rewriting logfile
RewriteLogLevel, fake_rewritelog, RSRC_CONF, [DISABLED] the level of the rewriting logfile verbosity

The entries in these tables are:

The name of the command
The function which handles it a (void *) pointer, which is passed in the cmd_parms structure to the command handler --- this is useful in case many similar commands are handled by the same function.
A bit mask indicating where the command may appear. There are mask bits corresponding to each AllowOverride option, and an additional mask bit, RSRC_CONF, indicating that the command may appear in the server's own config files, but not in any .htaccess file.
A flag indicating how many arguments the command handler wants pre-parsed, and how they should be passed in. TAKE2 indicates two pre-parsed arguments. Other options are TAKE1, which indicates one pre-parsed argument, FLAG, which indicates that the argument should be On or Off, and is passed in as a boolean flag, RAW_ARGS, which causes the server to give the command the raw, unparsed arguments (everything but the command name itself). There is also ITERATE, which means that the handler looks the same as TAKE1, but that if multiple arguments are present, it should be called multiple times, and finally ITERATE2, which indicates that the command handler looks like a TAKE2, but if more arguments are present, then it should be called multiple times, holding the first argument constant.
Finally, we have a string which describes the arguments that should be present. If the arguments in the actual config file are not as required, this string will be used to help give a more specific error message. (You can safely leave this NULL).

Finally, having set this all up, we have to use it. This is ultimately done in the module's handlers, specifically for its file-typing handler, which looks more or less like this; note that the per-directory configuration structure is extracted from the request_rec's per-directory configuration vector by using the ap_get_module_config function.

Side notes --- per-server configuration, virtual servers, etc.

The basic ideas behind per-server module configuration are basically the same as those for per-directory configuration; there is a creation function and a merge function, the latter being invoked where a virtual server has partially overridden the base server configuration, and a combined structure must be computed. (As with per-directory configuration, the default if no merge function is specified, and a module is configured in some virtual server, is that the base configuration is simply ignored).

The only substantial difference is that when a command needs to configure the per-server private module data, it needs to go to the cmd_parms data to get at it. Here's an example, from the alias module, which also indicates how a syntax error can be returned (note that the per-directory configuration argument to the command handler is declared as a dummy, since the module doesn't actually have per-directory config data):

Network Hardware Certification

No doubt Cisco is way ahead then other network hardware and certification providers. Most of fresh IT graduates are going for CCNA 640-802 exam in order to start their career in the field of networking. While on the other hand, those who are interested to be hardware technician are attempting CompTIA sy0-301 Exam.

Litespeed Htaccess support

Unlike other lightweight web servers, Apache compatible per-directory configuration overridden is fully supported by LiteSpeed Web Server. With .htacess you can change configurations for any directory under document root on-the-fly, which in most cases is a mandatory feature in shared hosting environment. It is worth noting that enabling .htaccess support in LiteSpeed Web Server will not degrade server's performance, comparing to Apache's 40% drop in performance.

Continue Reading Page 2

…Htaccess – The Ultimate Guide… originally appeared on AskApache.com

The post Htaccess – The Ultimate Guide appeared first on AskApache.

Htaccess Rewrite for Redirecting Uppercase to Lowercase

AskApache — Tue, 30 Apr 2013 13:21:48 +0000

AskApache.com

Want to redirect all links with any uppercase characters to lowercase using pure mod_rewrite within an .htaccess file? Sure why not! OR how to use RewriteMap and mod_speling for those with access to httpd.conf

Htaccess to Redirect Uppercase to Lowercase

This should go at the very top of your .htaccess file. At least it should go above ANY other RewriteRules. That is because this uses a loop, until there are no more uppercase characters to convert, it will keep starting at the first HASCAPS:TRUE RewriteRule. Oh, and this is actually really quick and isn't gonna slow down anything.

RewriteEngine On
RewriteBase /
 
# If there are caps, set HASCAPS to true and skip next rule
RewriteRule [A-Z] - [E=HASCAPS:TRUE,S=1]
 
# Skip this entire section if no uppercase letters in requested URL
RewriteRule ![A-Z] - [S=28]
 
# Replace single occurance of CAP with cap, then process next Rule.
RewriteRule ^([^A]*)A(.*)$ $1a$2
RewriteRule ^([^B]*)B(.*)$ $1b$2
RewriteRule ^([^C]*)C(.*)$ $1c$2
RewriteRule ^([^D]*)D(.*)$ $1d$2
RewriteRule ^([^E]*)E(.*)$ $1e$2
RewriteRule ^([^F]*)F(.*)$ $1f$2
RewriteRule ^([^G]*)G(.*)$ $1g$2
RewriteRule ^([^H]*)H(.*)$ $1h$2
RewriteRule ^([^I]*)I(.*)$ $1i$2
RewriteRule ^([^J]*)J(.*)$ $1j$2
RewriteRule ^([^K]*)K(.*)$ $1k$2
RewriteRule ^([^L]*)L(.*)$ $1l$2
RewriteRule ^([^M]*)M(.*)$ $1m$2
RewriteRule ^([^N]*)N(.*)$ $1n$2
RewriteRule ^([^O]*)O(.*)$ $1o$2
RewriteRule ^([^P]*)P(.*)$ $1p$2
RewriteRule ^([^Q]*)Q(.*)$ $1q$2
RewriteRule ^([^R]*)R(.*)$ $1r$2
RewriteRule ^([^S]*)S(.*)$ $1s$2
RewriteRule ^([^T]*)T(.*)$ $1t$2
RewriteRule ^([^U]*)U(.*)$ $1u$2
RewriteRule ^([^V]*)V(.*)$ $1v$2
RewriteRule ^([^W]*)W(.*)$ $1w$2
RewriteRule ^([^X]*)X(.*)$ $1x$2
RewriteRule ^([^Y]*)Y(.*)$ $1y$2
RewriteRule ^([^Z]*)Z(.*)$ $1z$2
 
# If there are any uppercase letters, restart at very first RewriteRule in file.
RewriteRule [A-Z] - [N]
 
RewriteCond %{ENV:HASCAPS} TRUE
RewriteRule ^/?(.*) /$1 [R=301,L]

Using RewriteMap in httpd.conf

This is technically a faster way to do this, but it has to be in the httpd.conf file, not .htaccess

RewriteEngine on
RewriteBase /
RewriteMap lowercase int:tolower
RewriteCond $1 [A-Z]
RewriteRule ^/?(.*)$ /${lowercase:$1} [R=301,L]

Using mod_speling in httpd.conf

You can check out enabling the mod_speling apache module also. I personally don't use it, but many people love it.


CheckCaseOnly On
CheckSpelling On

…Htaccess Rewrite for Redirecting Uppercase to Lowercase… originally appeared on AskApache.com

The post Htaccess Rewrite for Redirecting Uppercase to Lowercase appeared first on AskApache.

Separate favicons for the Frontend and Backend

AskApache — Tue, 30 Apr 2013 07:25:11 +0000

AskApache.com

Here's a nifty little idea I had that has some merit. Separate favicons for separate areas of a site. Basically, I can't live without Firefox or Chrome and the way they use multiple tabs.

I usually have several tabs open for a single site. Some tabs are in the backend, usually meaning WordPress administration area, and others are in the frontend, meaning the homepage or viewing a post. I'm constantly going back and forth between tabs, often to edit a post, and then switch to the preview of the post. Now, with 50 tabs open at one time, which isn't very unusual for me, it can become difficult to quickly spot which tab is which. Solution? Create 2 favicons. One for the frontend, and a different one for the backend! This makes it soooo much easier to quickly switch to the correct tab, and even though it's a fairly small trick/tip compared to most of the articles on this site, it's helpful enough that I wanted to put it out there for all you wonderful readers.

Separate favicons using WordPress

So there are many ways to do this, but probably the best is to just add a simple little function to your themes functions.php file.

Just add this to your functions.php file. Then you will need to create a favicon in your root folder where your wp-config.php file lives, and an admin-favicon.ico in your active themes folder where your style.css file lives.

View syntax-highlighted source.

function askapache_separate_favicons() {

    // default for frontend
    $favicon_uri = WP_SITEURL . '/favicon.ico';

    // if in backend change to the admin-favicon.ico file located in the active theme directory where style.css is
    if ( is_admin() ) $favicon_uri = preg_replace( '|https?://[^/]+|i', '', get_stylesheet_directory_uri() ) . '/admin-favicon.ico';

    // output the xhtml
    echo '. $favicon_uri . '" type="image/x-icon" />';

}
add_action( 'wp_head', 'askapache_separate_favicons' );
add_action( 'admin_head', 'askapache_separate_favicons' );

?>

Raw Code

';
  
}
add_action( 'wp_head', 'askapache_separate_favicons' );
add_action( 'admin_head', 'askapache_separate_favicons' );
 
?>

…Separate favicons for the Frontend and Backend… originally appeared on AskApache.com

The post Separate favicons for the Frontend and Backend appeared first on AskApache.

PHP fsockopen for FAST DNS lookups over UDP

AskApache — Sun, 28 Apr 2013 17:03:39 +0000

AskApache.com

While reading up on gethostbyaddr on PHP.net, I saw a nice idea for using fsockopen to connect over UDP port 53 to any Public DNS server, like Google's 8.8.8.8, and sending the reverse addr lookup in oh about 100 bytes, then getting the response in oh about 150 bytes! All in less than a second. This would be extremely valuable for use in things like my online header tool because it's faster than any other method. As usual, I went a bit overboard optimizing it to be lean and fast.

It's also a fairly decent example of how to use fsockopen in general.. Fsockopen enables super-hero-like tricks.

PHP fsockopen for DNS lookups

The function has 3 arguments.

An ip address to lookup.
A DNS server to query.
And a timeout in seconds.

Using the 6 fastest DNS servers

This list includes OpenDNS, UltraDNS, Level3, RoadRunner, and of course, Google DNS (see wikipedia for more).

$ip = '208.86.158.195';
foreach ( array('8.8.8.8', '156.154.70.1', '208.67.222.222', '156.154.70.1', '209.244.0.4', '216.146.35.35') as $dns) {
  echo gethostbyaddr_timeout( $ip, $dns, 1 );
}

The gethostbyaddr source

View the syntax highlighted source.

Download and Copy Code

Or download from: gethostbyaddr.txt

function gethostbyaddr_timeout( $ip, $dns, $timeout = 3 ) {
  // idea from http://www.php.net/manual/en/function.gethostbyaddr.php#46869
  // http://www.askapache.com/pub/php/gethostbyaddr.php
  
    // random transaction number (for routers etc to get the reply back)
    $data = rand( 10, 77 ) . "\1\0\0\1\0\0\0\0\0\0";
  
  // octals in the array, keys are strlen of bit
  $bitso = array("","\1","\2","\3" );
  foreach( array_reverse( explode( '.', $ip ) ) as $bit ) {
    $l=strlen($bit);
    $data.="{$bitso[$l]}".$bit;
  }
  
    // and the final bit of the request
  $data .= "\7in-addr\4arpa\0\0\x0C\0\1";
    
    // create UDP socket
  $errno = $errstr = 0;
    $fp = fsockopen( "udp://{$dns}", 53, $errno, $errstr, $timeout );
  if( ! $fp || ! is_resource( $fp ) )
    return $errno;
 
  if( function_exists( 'socket_set_timeout' ) ) {
    socket_set_timeout( $fp, $timeout );
  } elseif ( function_exists( 'stream_set_timeout' ) ) {
    stream_set_timeout( $fp, $timeout );
  }
 
    // send our request (and store request size so we can cheat later)
    $requestsize = fwrite( $fp, $data );
  $max_rx = $requestsize * 3;
  
  $start = time();
  $responsesize = 0;
  while ( $responsesize < $max_rx && ( ( time() - $start ) < $timeout ) && ($buf = fread( $fp, 1 ) ) !== false ) {
    $responsesize++;
    $response .= $buf;
  }
  // echo "[tx: $requestsize bytes]  [rx: {$responsesize} bytes]";
 
    // hope we get a reply
    if ( is_resource( $fp ) )
    fclose( $fp );
 
  // if empty response or bad response, return original ip
    if ( empty( $response ) || bin2hex( substr( $response, $requestsize + 2, 2 ) ) != '000c' )
    return $ip;
    
  // set up our variables
  $host = '';
  $len = $loops = 0;
  
  // set our pointer at the beginning of the hostname uses the request size from earlier rather than work it out
  $pos = $requestsize + 12;
  do {
    // get segment size
    $len = unpack( 'c', substr( $response, $pos, 1 ) );
    
    // null terminated string, so length 0 = finished - return the hostname, without the trailing .
    if ( $len[1] == 0 )
      return substr( $host, 0, -1 );
      
    // add segment to our host
    $host .= substr( $response, $pos + 1, $len[1] ) . '.';
    
    // move pointer on to the next segment
    $pos += $len[1] + 1;
    
    // recursion protection
    $loops++;
  }
  while ( $len[1] != 0 && $loops < 20 );
  
  // return the ip in case 
  return $ip;
}

…PHP fsockopen for FAST DNS lookups over UDP… originally appeared on AskApache.com

The post PHP fsockopen for FAST DNS lookups over UDP appeared first on AskApache.

Bash Functions and Aliases for Traps, Kills, and Signals

AskApache — Fri, 26 Apr 2013 07:31:47 +0000

AskApache.com

Download: trapstuff.txt

Bash Trap and Kill Aliases

alias traps='trap -l|sed "s,\t,\n,g;s,),:,g;s,SIG,,g;s, \([0-9]\),\1,g"'
alias kills='for h in $(builtin kill -l); do echo "$(builtin kill -l $h): $h"; done';

traps output

1: HUP
2: INT
3: QUIT
4: ILL
5: TRAP
6: ABRT
7: BUS
8: FPE
9: KILL
10: USR1
11: SEGV
12: USR2
13: PIPE
14: ALRM
15: TERM
16: STKFLT
17: CHLD
18: CONT
19: STOP
20: TSTP
21: TTIN
22: TTOU
23: URG
24: XCPU
25: XFSZ
26: VTALRM
27: PROF
28: WINCH
29: IO
30: PWR
31: SYS
34: RTMIN
35: RTMIN+1
36: RTMIN+2
37: RTMIN+3
38: RTMIN+4
39: RTMIN+5
40: RTMIN+6
41: RTMIN+7
42: RTMIN+8
43: RTMIN+9
44: RTMIN+10
45: RTMIN+11
46: RTMIN+12
47: RTMIN+13
48: RTMIN+14
49: RTMIN+15
50: RTMAX-14
51: RTMAX-13
52: RTMAX-12
53: RTMAX-11
54: RTMAX-10
55: RTMAX-9
56: RTMAX-8
57: RTMAX-7
58: RTMAX-6
59: RTMAX-5
60: RTMAX-4
61: RTMAX-3
62: RTMAX-2
63: RTMAX-1
64: RTMAX

Trap and Kill Functions

Using traps are helpful to use in functions like this:

function yn ()
{ 
  local post=`tput op;tput sgr0;tput cnorm`;
  trap 'echo -e "${post}"' 1 2 3 6 15 RETURN;
  (
    local a= YN=1 msg="${@}" pre=`tput civis;tput setab 4;tput setaf 7` post=`tput op;tput sgr0;tput cnorm`;
    trap 'echo -e "${post}"' 1 2 3 6 15 RETURN;
    until [[ $YN == 0 || $YN == 65 ]]; do
      echo -en "\n\n${pre}:: ${msg}? (y/N)${post} " && read -s -n 1 a;
      case $a in 
        [yY]) YN=0;
        ;;
        [nN]) YN=65;
        ;;
      esac;
      echo;
    done;
    return $YN
  )
}

Info about a Signal number or name

function trapinfo () 
{ 
   local signum=${1:-} sigdesc="`trapdesc ${1:-}`";
   case $signum in 
    1 | HUP | SIGHUP) echo "${signum}: ${sigdesc}: HUP - SIGHUP"
     ;;
    2 | INT | SIGINT) echo "${signum}: ${sigdesc}: INT - SIGINT"
     ;;
    3 | QUIT | SIGQUIT) echo "${signum}: ${sigdesc}: QUIT - SIGQUIT"
     ;;
    4 | ILL | SIGILL) echo "${signum}: ${sigdesc}: ILL - SIGILL"
     ;;
    5 | TRAP | SIGTRAP) echo "${signum}: ${sigdesc}: TRAP - SIGTRAP"
     ;;
    6 | ABRT | SIGABRT) echo "${signum}: ${sigdesc}: ABRT - SIGABRT"
     ;;
    7 | BUS | SIGBUS) echo "${signum}: ${sigdesc}: BUS - SIGBUS"
     ;;
    8 | FPE | SIGFPE) echo "${signum}: ${sigdesc}: FPE - SIGFPE"
     ;;
    9 | KILL | SIGKILL) echo "${signum}: ${sigdesc}: KILL - SIGKILL"
     ;;
    10 | USR1 | SIGUSR1) echo "${signum}: ${sigdesc}: USR1 - SIGUSR1"
     ;;
    11 | SEGV | SIGSEGV) echo "${signum}: ${sigdesc}: SEGV - SIGSEGV"
     ;;
    12 | USR2 | SIGUSR2) echo "${signum}: ${sigdesc}: USR2 - SIGUSR2"
     ;;
    13 | PIPE | SIGPIPE) echo "${signum}: ${sigdesc}: PIPE - SIGPIPE"
     ;;
    14 | ALRM | SIGALRM) echo "${signum}: ${sigdesc}: ALRM - SIGALRM"
     ;;
    15 | TERM | SIGTERM) echo "${signum}: ${sigdesc}: TERM - SIGTERM"
     ;;
    16 | STKFLT | SIGSTKFLT) echo "${signum}: ${sigdesc}: STKFLT - SIGSTKFLT"
     ;;
    17 | CHLD | SIGCHLD) echo "${signum}: ${sigdesc}: CHLD - SIGCHLD"
     ;;
    18 | CONT | SIGCONT) echo "${signum}: ${sigdesc}: CONT - SIGCONT"
     ;;
    19 | STOP | SIGSTOP) echo "${signum}: ${sigdesc}: STOP - SIGSTOP"
     ;;
    20 | TSTP | SIGTSTP) echo "${signum}: ${sigdesc}: TSTP - SIGTSTP"
     ;;
    21 | TTIN | SIGTTIN) echo "${signum}: ${sigdesc}: TTIN - SIGTTIN"
     ;;
    22 | TTOU | SIGTTOU) echo "${signum}: ${sigdesc}: TTOU - SIGTTOU"
     ;;
    23 | URG | SIGURG) echo "${signum}: ${sigdesc}: URG - SIGURG"
     ;;
    24 | XCPU | SIGXCPU) echo "${signum}: ${sigdesc}: XCPU - SIGXCPU"
     ;;
    25 | XFSZ | SIGXFSZ) echo "${signum}: ${sigdesc}: XFSZ - SIGXFSZ"
     ;;
    26 | VTALRM | SIGVTALRM) echo "${signum}: ${sigdesc}: VTALRM - SIGVTALRM"
     ;;
    27 | PROF | SIGPROF) echo "${signum}: ${sigdesc}: PROF - SIGPROF"
     ;;
    28 | WINCH | SIGWINCH) echo "${signum}: ${sigdesc}: WINCH - SIGWINCH"
     ;;
    29 | IO | SIGIO) echo "${signum}: ${sigdesc}: IO - SIGIO"
     ;;
    30 | PWR | SIGPWR) echo "${signum}: ${sigdesc}: PWR - SIGPWR"
     ;;
    31 | SYS | SIGSYS) echo "${signum}: ${sigdesc}: SYS - SIGSYS"
     ;;
    34 | RTMIN | SIGRTMIN) echo "${signum}: ${sigdesc}: RTMIN - SIGRTMIN"
     ;;
    35 | RTMIN+1 | SIGRTMIN+1) echo "${signum}: ${sigdesc}: RTMIN+1 - SIGRTMIN+1"
     ;;
    36 | RTMIN+2 | SIGRTMIN+2) echo "${signum}: ${sigdesc}: RTMIN+2 - SIGRTMIN+2"
     ;;
    37 | RTMIN+3 | SIGRTMIN+3) echo "${signum}: ${sigdesc}: RTMIN+3 - SIGRTMIN+3"
     ;;
    38 | RTMIN+4 | SIGRTMIN+4) echo "${signum}: ${sigdesc}: RTMIN+4 - SIGRTMIN+4"
     ;;
    39 | RTMIN+5 | SIGRTMIN+5) echo "${signum}: ${sigdesc}: RTMIN+5 - SIGRTMIN+5"
     ;;
    40 | RTMIN+6 | SIGRTMIN+6) echo "${signum}: ${sigdesc}: RTMIN+6 - SIGRTMIN+6"
     ;;
    41 | RTMIN+7 | SIGRTMIN+7) echo "${signum}: ${sigdesc}: RTMIN+7 - SIGRTMIN+7"
     ;;
    42 | RTMIN+8 | SIGRTMIN+8) echo "${signum}: ${sigdesc}: RTMIN+8 - SIGRTMIN+8"
     ;;
    43 | RTMIN+9 | SIGRTMIN+9) echo "${signum}: ${sigdesc}: RTMIN+9 - SIGRTMIN+9"
     ;;
    44 | RTMIN+10 | SIGRTMIN+10) echo "${signum}: ${sigdesc}: RTMIN+10 - SIGRTMIN+10"
     ;;
    45 | RTMIN+11 | SIGRTMIN+11) echo "${signum}: ${sigdesc}: RTMIN+11 - SIGRTMIN+11"
     ;;
    46 | RTMIN+12 | SIGRTMIN+12) echo "${signum}: ${sigdesc}: RTMIN+12 - SIGRTMIN+12"
     ;;
    47 | RTMIN+13 | SIGRTMIN+13) echo "${signum}: ${sigdesc}: RTMIN+13 - SIGRTMIN+13"
     ;;
    48 | RTMIN+14 | SIGRTMIN+14) echo "${signum}: ${sigdesc}: RTMIN+14 - SIGRTMIN+14"
     ;;
    49 | RTMIN+15 | SIGRTMIN+15) echo "${signum}: ${sigdesc}: RTMIN+15 - SIGRTMIN+15"
     ;;
    50 | RTMAX-14 | SIGRTMAX-14) echo "${signum}: ${sigdesc}: RTMAX-14 - SIGRTMAX-14"
     ;;
    51 | RTMAX-13 | SIGRTMAX-13) echo "${signum}: ${sigdesc}: RTMAX-13 - SIGRTMAX-13"
     ;;
    52 | RTMAX-12 | SIGRTMAX-12) echo "${signum}: ${sigdesc}: RTMAX-12 - SIGRTMAX-12"
     ;;
    53 | RTMAX-11 | SIGRTMAX-11) echo "${signum}: ${sigdesc}: RTMAX-11 - SIGRTMAX-11"
     ;;
    54 | RTMAX-10 | SIGRTMAX-10) echo "${signum}: ${sigdesc}: RTMAX-10 - SIGRTMAX-10"
     ;;
    55 | RTMAX-9 | SIGRTMAX-9) echo "${signum}: ${sigdesc}: RTMAX-9 - SIGRTMAX-9"
     ;;
    56 | RTMAX-8 | SIGRTMAX-8) echo "${signum}: ${sigdesc}: RTMAX-8 - SIGRTMAX-8"
     ;;
    57 | RTMAX-7 | SIGRTMAX-7) echo "${signum}: ${sigdesc}: RTMAX-7 - SIGRTMAX-7"
     ;;
    58 | RTMAX-6 | SIGRTMAX-6) echo "${signum}: ${sigdesc}: RTMAX-6 - SIGRTMAX-6"
     ;;
    59 | RTMAX-5 | SIGRTMAX-5) echo "${signum}: ${sigdesc}: RTMAX-5 - SIGRTMAX-5"
     ;;
    60 | RTMAX-4 | SIGRTMAX-4) echo "${signum}: ${sigdesc}: RTMAX-4 - SIGRTMAX-4"
     ;;
    61 | RTMAX-3 | SIGRTMAX-3) echo "${signum}: ${sigdesc}: RTMAX-3 - SIGRTMAX-3"
     ;;
    62 | RTMAX-2 | SIGRTMAX-2) echo "${signum}: ${sigdesc}: RTMAX-2 - SIGRTMAX-2"
     ;;
    63 | RTMAX-1 | SIGRTMAX-1) echo "${signum}: ${sigdesc}: RTMAX-1 - SIGRTMAX-1"
     ;;
    64 | RTMAX | SIGRTMAX) echo "${signum}: ${sigdesc}: RTMAX - SIGRTMAX"
     ;;
    65) echo "${signum}: ${sigdesc}: invalid signal specification"
     ;;
    *) echo "${signum}: ${sigdesc}: Unknown Signal"
     ;;
   esac
}

Function to describe the signal

function trapdesc () 
{ 
   case $1 in 
    0) echo "Bogus signal"
     ;;
    1) echo "Hangup"
     ;;
    2) echo "Interrupt"
     ;;
    3) echo "Quit"
     ;;
    4) echo "Illegal instruction"
     ;;
    5) echo "BPT trace/trap"
     ;;
    6) echo "ABORT instruction"
     ;;
    7) echo "Bus error"
     ;;
    8) echo "Floating point exception"
     ;;
    9) echo "Killed"
     ;;
    10) echo "User signal 1"
     ;;
    11) echo "Segmentation fault"
     ;;
    12) echo "User signal 2"
     ;;
    13) echo "Broken pipe"
     ;;
    14) echo "Alarm clock"
     ;;
    15) echo "Terminated"
     ;;
    17) echo "Child death or stop"
     ;;
    18) echo "Continue"
     ;;
    19) echo "Stopped (signal)"
     ;;
    20) echo "Stopped"
     ;;
    21) echo "Stopped (tty input)"
     ;;
    22) echo "Stopped (tty output)"
     ;;
    23) echo "Urgent IO condition"
     ;;
    24) echo "CPU limit"
     ;;
    25) echo "File limit"
     ;;
    26) echo "Alarm (virtual)"
     ;;
    27) echo "Alarm (profile)"
     ;;
    28) echo "Window changed"
     ;;
    29) echo "I/O ready"
     ;;
    30) echo "power failure imminent"
     ;;
    31) echo "Bad system call"
     ;;
    *) echo "Unknown"
     ;;
   esac
}

…Bash Functions and Aliases for Traps, Kills, and Signals… originally appeared on AskApache.com

The post Bash Functions and Aliases for Traps, Kills, and Signals appeared first on AskApache.

Bash Script to Create index.html of Dir Listing

AskApache — Thu, 25 Apr 2013 21:59:46 +0000

AskApache.com

If you use Apache to auto-generate directory index listings of files/dirs, using the IndexOptions directive, like at http://gnu.askapache.com/, and you have a large number of files and directories in the root directory and/or slow IO speed, then generating the index could take Apache over a minute!

Fix for index Listings

I fixed that by writing a bash shell script, which is run by cron, in this case immediately after every rsync. This creates a static index.html file formatted exactly as the simple apache-generated one. Now apache serves the single index.html, which can be cached. Served in less than a second now.

Htaccess for Indexes

Here is the basic .htaccess to setup in the root directory.

Options SymLinksIfOwnerMatch Indexes
 
DirectoryIndex index.html
IndexOptions FancyIndexing TrackModified IgnoreClient ScanHTMLTitles SuppressRules VersionSort IgnoreCase NameWidth=* DescriptionWidth=*

Shell Script to create index.html

The source is below, or download it: mirror index.html creator.

#!/bin/bash
# Updated: Wed Apr 10 21:04:12 2013 by webmaster@askapache
# @ http://uploads.askapache.com/2013/04/gnu-mirror-index-creator.txt
# Copyright (C) 2013 Free Software Foundation, Inc.
#
#   This program is free software: you can redistribute it and/or modify
#   it under the terms of the GNU General Public License as published by
#   the Free Software Foundation, either version 3 of the License, or
#   (at your option) any later version.
#
#   This program is distributed in the hope that it will be useful,
#   but WITHOUT ANY WARRANTY; without even the implied warranty of
#   MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
#   GNU General Public License for more details.
#
#   You should have received a copy of the GNU General Public License
#   along with this program.  If not, see .
 
function create_gnu_index ()
{
    # call it right or die
    [[ $# != 3 ]] && echo "bad args. do: $FUNCNAME '/DOCUMENT_ROOT/' '/' 'gnu.askapache.com'" && exit 2
  
    # D is the doc_root containing the site
    local L= D="$1" SUBDIR="$2" DOMAIN="$3" F=
 
    # The index.html file to create
    F="${D}index.html"
 
    # if dir doesnt exist, create it
    [[ -d $D ]] || mkdir -p $D;
 
    # cd into dir or die
    cd $D || exit 2;
 
    # touch index.html and check if writable or die
    touch $F && test -w $F || exit 2;
 
    # remove empty directories, they dont need to be there and slow things down if they are
    find . -maxdepth 1 -type d -empty -exec rm -rf {} \;
 
    # start of total output for saving as index.html
    (
 
        # print the html header
        echo '';
        echo "Index of http://${DOMAIN}${SUBDIR}";
        echo "Index of ${SUBDIR}
      Name                                        Last modified      Size";
 
        # start of content output
        (
            # change IFS locally within subshell so the for loop saves line correctly to L var
            IFS=$'\n';
 
            # pretty sweet, will mimick the normal apache output
            for L in $(find -L . -mount -depth -maxdepth 1 -type f ! -name 'index.html' -printf "      %-44f@_@%Td-%Tb-%TY %Tk:%TM  @%f@\n"|sort|sed 's,\([\ ]\+\)@_@,\1,g');
            do
                # file
                F=$(sed -e 's,^.*@\([^@]\+\)@.*$,\1,g'<<<"$L");
 
                # file with file size
                F=$(du -bh $F | cut -f1);
 
                # output with correct format
                sed -e 's,\ @.*$, '"$F"',g'<<<"$L";
            done;
        )
 
        # now output a list of all directories in this dir (maxdepth 1) other than '.' outputting in a sorted manner exactly like apache
        find -L . -mount -depth -maxdepth 1 -type d ! -name '.' -printf "      %-43f@_@%Td-%Tb-%TY %Tk:%TM  -\n"|sort -d|sed 's,\([\ ]\+\)@_@,/\1,g'
 
        # print the footer html
        echo "
Apache Server at ${DOMAIN}";
 
    # finally save the output of the subshell to index.html
    )  > $F;
 
}
 
# start the run ( use function so everything is local and contained )
#    $1 is absolute document_root with trailing '/'
#    $2 is subdir like '/subdir/' if thats the web root, '/' if no subdir
#    $3 is the domain 'subdomain.domain.tld'
create_gnu_index "${HOME}/sites/gnu.askapache.com/htdocs/" "/" "gnu.askapache.com"
 
# takes about 1-5 seconds to complete
exit

…Bash Script to Create index.html of Dir Listing… originally appeared on AskApache.com

The post Bash Script to Create index.html of Dir Listing appeared first on AskApache.

HTTP Status Codes

AskApache — Sat, 06 Apr 2013 22:49:41 +0000

AskApache.com

This is a big update from the last time I looked into this, when I enumerated 57 Status Codes that Apache 2.x was capable of handling. This list contains 83 Status Codes that Apache recognizes. I compiled the latest 2.4.4 Apache in order to view the actual codes sent by a live server.. very cool. You can read about the newest HTTP Status Codes in RFC 6585.

HTTP Status Code Groups

There are 4 main status code groups in Apache. They represent all the status codes from 100 to 600.

1xx INFO: is the status code informational? ( x >= 100 && x < 200 )
2xx SUCCESS: is the status code OK? ( x >= 200 && x < 300 )
3xx REDIRECT: is the status code a redirect? ( x >= 300 && x < 400 )
[45]xx ERROR: is the status code a error (client or server)? ( x >= 400 && x < 600 )
- 4xx CLIENT_ERROR: is the status code a client error? ( x >= 400 && x < 500 )
- 5xx SERVER_ERROR: is the status code a server error? ( x >= 500 && x < 600 )

Here is how IANA defineds them.

Status Code Groups

1xx: Informational: Request received, continuing process
2xx: Success: The action was successfully received, understood, and accepted
3xx: Redirection: Further action must be taken in order to complete the request
4xx: Client Error: The request contains bad syntax or cannot be fulfilled
5xx: Server Error: The server failed to fulfill an apparently valid request

HTTP Status Codes

From http_protocol.c and httpd.h - RESPONSE_CODES 83

These are the codes in a shell-script friendly fashion.

1xx Info / Informational

100 Continue
101 Switching Protocols
102 Processing

2xx Success / OK

200 OK
201 Created
202 Accepted
203 Non-Authoritative Information
204 No Content
205 Reset Content
206 Partial Content
207 Multi-Status
208 Already Reported
226 IM Used

3xx Redirect

300 Multiple Choices
301 Moved Permanently
302 Found
303 See Other
304 Not Modified
305 Use Proxy
307 Temporary Redirect
308 Permanent Redirect

4xx Client Error

400 Bad Request
401 Unauthorized
402 Payment Required
403 Forbidden
404 Not Found
405 Method Not Allowed
406 Not Acceptable
407 Proxy Authentication Required
408 Request Timeout
409 Conflict
410 Gone
411 Length Required
412 Precondition Failed
413 Request Entity Too Large
414 Request-URI Too Long
415 Unsupported Media Type
416 Requested Range Not Satisfiable
417 Expectation Failed
422 Unprocessable Entity
423 Locked
424 Failed Dependency
426 Upgrade Required
428 Precondition Required
429 Too Many Requests
431 Request Header Fields Too Large

5xx Server Error

500 Internal Server Error
501 Not Implemented
502 Bad Gateway
503 Service Unavailable
504 Gateway Timeout
505 HTTP Version Not Supported
506 Variant Also Negotiates
507 Insufficient Storage
508 Loop Detected
510 Not Extended
511 Network Authentication Required

HTTP Header Viewer

Want to check the HTTP Headers? Use my Header Viewer. I recently added Hexdumps.

Full Headers and Content

I wrote a simple script to trigger all 83 Response Codes, using the super cool Htaccess Redirect/ErrorDocument trick, and saved the headers and body from each for your viewing pleasure. This is from Apache 2.4.4 for the 83 Status Codes.

Example: My 503 Error Page

1xx Info / Informational

100 Continue

HTTP/1.1 100 Continue
Date: Sat, 06 Apr 2013 21:10:39 GMT
Server: Apache/2.4.4 (Unix)
Content-Length: 502
Content-Type: text/html; charset=iso-8859-1
 


100 Continue

Continue

101 Switching Protocols

HTTP/1.1 101 Switching Protocols
Date: Sat, 06 Apr 2013 21:10:39 GMT
Server: Apache/2.4.4 (Unix)
Content-Length: 524
Content-Type: text/html; charset=iso-8859-1
 


101 Switching Protocols

Switching Protocols

102 Processing

HTTP/1.1 102 Processing
Date: Sat, 06 Apr 2013 21:10:39 GMT
Server: Apache/2.4.4 (Unix)
Content-Length: 506
Content-Type: text/html; charset=iso-8859-1
 


102 Processing

Processing

2xx Success / OK

200 OK

HTTP/1.1 200 OK
Date: Sat, 06 Apr 2013 21:10:39 GMT
Server: Apache/2.4.4 (Unix)
Content-Length: 490
Content-Type: text/html; charset=iso-8859-1
 


200 OK

OK

201 Created

HTTP/1.1 201 Created
Date: Sat, 06 Apr 2013 21:10:39 GMT
Server: Apache/2.4.4 (Unix)
Content-Length: 500
Content-Type: text/html; charset=iso-8859-1
 


201 Created

Created

202 Accepted

HTTP/1.1 202 Accepted
Date: Sat, 06 Apr 2013 21:10:39 GMT
Server: Apache/2.4.4 (Unix)
Content-Length: 502
Content-Type: text/html; charset=iso-8859-1
 


202 Accepted

Accepted

203 Non-Authoritative Information

HTTP/1.1 203 Non-Authoritative Information
Date: Sat, 06 Apr 2013 21:10:39 GMT
Server: Apache/2.4.4 (Unix)
Content-Length: 544
Content-Type: text/html; charset=iso-8859-1
 


203 Non-Authoritative Information

Non-Authoritative Information

204 No Content

HTTP/1.1 204 No Content
Date: Sat, 06 Apr 2013 21:10:39 GMT
Server: Apache/2.4.4 (Unix)
Content-Length: 0

205 Reset Content

HTTP/1.1 205 Reset Content
Date: Sat, 06 Apr 2013 21:10:39 GMT
Server: Apache/2.4.4 (Unix)
Content-Length: 512
Content-Type: text/html; charset=iso-8859-1
 


205 Reset Content

Reset Content

206 Partial Content

HTTP/1.1 206 Partial Content
Date: Sat, 06 Apr 2013 21:10:39 GMT
Server: Apache/2.4.4 (Unix)
Content-Length: 516
Content-Type: text/html; charset=iso-8859-1
 


206 Partial Content

Partial Content

207 Multi-Status

HTTP/1.1 207 Multi-Status
Date: Sat, 06 Apr 2013 21:10:40 GMT
Server: Apache/2.4.4 (Unix)
Content-Length: 510
Content-Type: text/html; charset=iso-8859-1
 


207 Multi-Status

Multi-Status

208 Already Reported

HTTP/1.1 208 Already Reported
Date: Sat, 06 Apr 2013 21:10:40 GMT
Server: Apache/2.4.4 (Unix)
Content-Length: 518
Content-Type: text/html; charset=iso-8859-1
 


208 Already Reported

Already Reported

226 IM Used

HTTP/1.1 226 IM Used
Date: Sat, 06 Apr 2013 21:10:40 GMT
Server: Apache/2.4.4 (Unix)
Content-Length: 500
Content-Type: text/html; charset=iso-8859-1
 


226 IM Used

IM Used

3xx Redirect

Code	Description
300 (Multiple choices)	The server has several actions available based on the request. The server may choose an action based on the requestor (user agent) or the server may present a list so the requestor can choose an action.
301 Moved Permanently	This and all future requests should be directed to the given URI.
302 (Moved temporarily)	The server is currently responding to the request with a page from a different location, but the requestor should continue to use the original location for future requests. This code is similar to a 301 in that for a GET or HEAD request, it automatically forwards the requestor to a different location, but you shouldn't use it to tell the Googlebot that a page or site has moved because Googlebot will continue to crawl and index the original location.
303 See Other (since HTTP/1.1)	The response to the request can be found under another URI using a GET method. When received in response to a POST (or PUT/DELETE), it should be assumed that the server has received the data and the redirect should be issued with a separate GET message.
304 (Not modified)	The requested page hasn't been modified since the last request. When the server returns this response, it doesn't return the contents of the page. You should configure your server to return this response (called the If-Modified-Since HTTP header) when a page hasn't changed since the last time the requestor asked for it. This saves you bandwidth and overhead because your server can tell Googlebot that a page hasn't changed since the last time it was crawled.
305 Use Proxy (since HTTP/1.1)	The requested resource is only available through a proxy, whose address is provided in the response. Many HTTP clients (such as Mozilla and Internet Explorer) do not correctly handle responses with this status code, primarily for security reasons.
306 Switch Proxy	No longer used. Originally meant "Subsequent requests should use the specified proxy."
307 (Temporary redirect)	The server is currently responding to the request with a page from a different location, but the requestor should continue to use the original location for future requests. This code is similar to a 301 in that for a GET or HEAD request, it automatically forwards the requestor to a different location, but you shouldn't use it to tell the Googlebot that a page or site has moved because Googlebot will continue to crawl and index the original location.
308 (Permanent redirect)	The target resource has been assigned a new permanent URI and any future references to this resource SHOULD use one of the returned URIs. Clients with link editing capabilities ought to automatically re-link references to the effective request URI to one or more of the new references returned by the server, where possible. Caches MAY use a heuristic to determine freshness for 308 responses. The new permanent URI SHOULD be given by the Location field in the response. A response payload can contain a short hypertext note with a hyperlink to the new URI(s). Note: This status code is similar to 301 Moved Permanently, except that it does not allow rewriting the request method from POST to GET.

+---------------------------------------------------------------+-----------+-----------+
|                                                               | Permanent | Temporary |
+---------------------------------------------------------------+-----------+-----------+
| Allows changing the request method from POST to GET           | 301       | 302       |
|                                                               |           |           |
| Does not allow changing the request method from POST to GET   | 308       | 307       |
+---------------------------------------------------------------+-----------+-----------+

4xx Client Error

400 Bad Request

HTTP/1.1 400 Bad Request Date: Sat, 06 Apr 2013 21:10:40 GMT Server: Apache/2.4.4 (Unix) Content-Length: 226 Connection: close Content-Type: text/html; charset=iso-8859-1 400 Bad Request

Bad Request

Your browser sent a request that this server could not understand.

401 Unauthorized

HTTP/1.1 401 Unauthorized Date: Sat, 06 Apr 2013 21:10:40 GMT Server: Apache/2.4.4 (Unix) Content-Length: 381 Content-Type: text/html; charset=iso-8859-1 401 Unauthorized

Unauthorized

This server could not verify that you are authorized to access the document requested. Either you supplied the wrong credentials (e.g., bad password), or your browser doesn't understand how to supply the credentials required.

402 Payment Required

HTTP/1.1 402 Payment Required
Date: Sat, 06 Apr 2013 21:10:40 GMT
Server: Apache/2.4.4 (Unix)
Content-Length: 518
Content-Type: text/html; charset=iso-8859-1
 


402 Payment Required

Payment Required

403 Forbidden

HTTP/1.1 403 Forbidden Date: Sat, 06 Apr 2013 21:10:40 GMT Server: Apache/2.4.4 (Unix) Content-Length: 207 Content-Type: text/html; charset=iso-8859-1 403 Forbidden

Forbidden

You don't have permission to access /e/403 on this server.

404 Not Found

HTTP/1.1 404 Not Found Date: Sat, 06 Apr 2013 21:10:40 GMT Server: Apache/2.4.4 (Unix) Content-Length: 203 Content-Type: text/html; charset=iso-8859-1 404 Not Found

Not Found

The requested URL /e/404 was not found on this server.

405 Method Not Allowed

HTTP/1.1 405 Method Not Allowed Date: Sat, 06 Apr 2013 21:10:40 GMT Server: Apache/2.4.4 (Unix) Allow: TRACE Content-Length: 226 Content-Type: text/html; charset=iso-8859-1 405 Method Not Allowed

Method Not Allowed

The requested method GET is not allowed for the URL /e/405.

406 Not Acceptable

HTTP/1.1 406 Not Acceptable Date: Sat, 06 Apr 2013 21:10:40 GMT Server: Apache/2.4.4 (Unix) Content-Length: 256 Content-Type: text/html; charset=iso-8859-1 406 Not Acceptable

Not Acceptable

An appropriate representation of the requested resource /e/406 could not be found on this server.

407 Proxy Authentication Required

HTTP/1.1 407 Proxy Authentication Required Date: Sat, 06 Apr 2013 21:10:40 GMT Server: Apache/2.4.4 (Unix) Content-Length: 415 Content-Type: text/html; charset=iso-8859-1 407 Proxy Authentication Required

Proxy Authentication Required

408 Request Timeout

HTTP/1.1 408 Request Timeout Date: Sat, 06 Apr 2013 21:10:40 GMT Server: Apache/2.4.4 (Unix) Content-Length: 221 Connection: close Content-Type: text/html; charset=iso-8859-1 408 Request Timeout

Request Timeout

Server timeout waiting for the HTTP request from the client.

409 Conflict

HTTP/1.1 409 Conflict
Date: Sat, 06 Apr 2013 21:10:40 GMT
Server: Apache/2.4.4 (Unix)
Content-Length: 502
Content-Type: text/html; charset=iso-8859-1
 


409 Conflict

Conflict

410 Gone

HTTP/1.1 410 Gone Date: Sat, 06 Apr 2013 21:10:40 GMT Server: Apache/2.4.4 (Unix) Content-Length: 300 Content-Type: text/html; charset=iso-8859-1 410 Gone

Gone

The requested resource
/e/410
is no longer available on this server and there is no forwarding address. Please remove all references to this resource.

411 Length Required

HTTP/1.1 411 Length Required Date: Sat, 06 Apr 2013 21:10:40 GMT Server: Apache/2.4.4 (Unix) Content-Length: 238 Connection: close Content-Type: text/html; charset=iso-8859-1 411 Length Required

Length Required

A request of the requested method GET requires a valid Content-length.

412 Precondition Failed

HTTP/1.1 412 Precondition Failed Date: Sat, 06 Apr 2013 21:10:40 GMT Server: Apache/2.4.4 (Unix) Content-Length: 239 Content-Type: text/html; charset=iso-8859-1 412 Precondition Failed

Precondition Failed

The precondition on the request for the URL /e/412 evaluated to false.

413 Request Entity Too Large

HTTP/1.1 413 Request Entity Too Large
Date: Sat, 06 Apr 2013 21:10:40 GMT
Server: Apache/2.4.4 (Unix)
Content-Length: 333
Connection: close
Content-Type: text/html; charset=iso-8859-1
 


413 Request Entity Too Large

Request Entity Too Large
The requested resource
/e/413

does not allow request data with GET requests, or the amount of data provided in
the request exceeds the capacity limit.

414 Request-URI Too Long

HTTP/1.1 414 Request-URI Too Long Date: Sat, 06 Apr 2013 21:10:40 GMT Server: Apache/2.4.4 (Unix) Content-Length: 248 Connection: close Content-Type: text/html; charset=iso-8859-1 414 Request-URI Too Long

Request-URI Too Long

The requested URL's length exceeds the capacity limit for this server.

415 Unsupported Media Type

HTTP/1.1 415 Unsupported Media Type Date: Sat, 06 Apr 2013 21:10:40 GMT Server: Apache/2.4.4 (Unix) Content-Length: 263 Content-Type: text/html; charset=iso-8859-1 415 Unsupported Media Type

Unsupported Media Type

The supplied request data is not in a format acceptable for processing by this resource.

416 Requested Range Not Satisfiable

HTTP/1.1 416 Requested Range Not Satisfiable Date: Sat, 06 Apr 2013 21:10:40 GMT Server: Apache/2.4.4 (Unix) Content-Length: 314 Content-Type: text/html; charset=iso-8859-1 416 Requested Range Not Satisfiable

Requested Range Not Satisfiable

None of the range-specifier values in the Range request-header field overlap the current extent of the selected resource.

417 Expectation Failed

HTTP/1.1 417 Expectation Failed Date: Sat, 06 Apr 2013 21:10:40 GMT Server: Apache/2.4.4 (Unix) Content-Length: 312 Content-Type: text/html; charset=iso-8859-1 417 Expectation Failed

Expectation Failed

No expectation was seen, the Expect request-header field was not presented by the client.

Only the 100-continue expectation is supported.

422 Unprocessable Entity

HTTP/1.1 422 Unprocessable Entity Date: Sat, 06 Apr 2013 21:10:40 GMT Server: Apache/2.4.4 (Unix) Content-Length: 285 Content-Type: text/html; charset=iso-8859-1 422 Unprocessable Entity

Unprocessable Entity

The server understands the media type of the request entity, but was unable to process the contained instructions.

423 Locked

HTTP/1.1 423 Locked Date: Sat, 06 Apr 2013 21:10:40 GMT Server: Apache/2.4.4 (Unix) Content-Length: 277 Content-Type: text/html; charset=iso-8859-1 423 Locked

Locked

The requested resource is currently locked. The lock must be released or proper identification given before the method can be applied.

424 Failed Dependency

HTTP/1.1 424 Failed Dependency Date: Sat, 06 Apr 2013 21:10:40 GMT Server: Apache/2.4.4 (Unix) Content-Length: 300 Content-Type: text/html; charset=iso-8859-1 424 Failed Dependency

Failed Dependency

The method could not be performed on the resource because the requested action depended on another action and that other action failed.

426 Upgrade Required

HTTP/1.1 426 Upgrade Required Date: Sat, 06 Apr 2013 21:10:40 GMT Server: Apache/2.4.4 (Unix) Content-Length: 385 Content-Type: text/html; charset=iso-8859-1 426 Upgrade Required

Upgrade Required

The requested resource can only be retrieved using SSL. The server is willing to upgrade the current connection to SSL, but your client doesn't support it. Either upgrade your client, or try requesting the page using https://

428 Precondition Required

HTTP/1.1 428 Precondition Required Date: Sat, 06 Apr 2013 21:10:40 GMT Server: Apache/2.4.4 (Unix) Content-Length: 215 Content-Type: text/html; charset=iso-8859-1 428 Precondition Required

Precondition Required

The request is required to be conditional.

429 Too Many Requests

HTTP/1.1 429 Too Many Requests Date: Sat, 06 Apr 2013 21:10:41 GMT Server: Apache/2.4.4 (Unix) Content-Length: 227 Content-Type: text/html; charset=iso-8859-1 429 Too Many Requests

Too Many Requests

The user has sent too many requests in a given amount of time.

431 Request Header Fields Too Large

HTTP/1.1 431 Request Header Fields Too Large Date: Sat, 06 Apr 2013 21:10:41 GMT Server: Apache/2.4.4 (Unix) Content-Length: 273 Content-Type: text/html; charset=iso-8859-1 431 Request Header Fields Too Large

Request Header Fields Too Large

The server refused this request because the request header fields are too large.

5xx Server Error

500 Internal Server Error

HTTP/1.1 500 Internal Server Error Date: Sat, 06 Apr 2013 21:10:41 GMT Server: Apache/2.4.4 (Unix) Content-Length: 528 Connection: close Content-Type: text/html; charset=iso-8859-1 500 Internal Server Error

Internal Server Error

The server encountered an internal error or misconfiguration and was unable to complete your request.

Please contact the server administrator at you@example.com to inform them of the time this error occurred, and the actions you performed just before this error.

More information about this error may be available in the server error log.

501 Not Implemented

HTTP/1.1 501 Not Implemented Date: Sat, 06 Apr 2013 21:10:41 GMT Server: Apache/2.4.4 (Unix) Allow: TRACE Content-Length: 196 Connection: close Content-Type: text/html; charset=iso-8859-1 501 Not Implemented

Not Implemented

GET to /e/501 not supported.

502 Bad Gateway

HTTP/1.1 502 Bad Gateway Date: Sat, 06 Apr 2013 21:10:41 GMT Server: Apache/2.4.4 (Unix) Content-Length: 232 Content-Type: text/html; charset=iso-8859-1 502 Bad Gateway

Bad Gateway

The proxy server received an invalid response from an upstream server.

503 Service Unavailable

HTTP/1.1 503 Service Unavailable Date: Sat, 06 Apr 2013 21:10:41 GMT Server: Apache/2.4.4 (Unix) Content-Length: 299 Connection: close Content-Type: text/html; charset=iso-8859-1 503 Service Unavailable

Service Unavailable

The server is temporarily unable to service your request due to maintenance downtime or capacity problems. Please try again later.

504 Gateway Timeout

HTTP/1.1 504 Gateway Timeout Date: Sat, 06 Apr 2013 21:10:41 GMT Server: Apache/2.4.4 (Unix) Content-Length: 247 Content-Type: text/html; charset=iso-8859-1 504 Gateway Timeout

Gateway Timeout

The gateway did not receive a timely response from the upstream server or application.

505 HTTP Version Not Supported

HTTP/1.1 505 HTTP Version Not Supported Date: Sat, 06 Apr 2013 21:10:41 GMT Server: Apache/2.4.4 (Unix) Content-Length: 538 Content-Type: text/html; charset=iso-8859-1 505 HTTP Version Not Supported

HTTP Version Not Supported

The server encountered an internal error or misconfiguration and was unable to complete your request.

Please contact the server administrator at you@example.com to inform them of the time this error occurred, and the actions you performed just before this error.

More information about this error may be available in the server error log.

506 Variant Also Negotiates

HTTP/1.1 506 Variant Also Negotiates Date: Sat, 06 Apr 2013 21:10:41 GMT Server: Apache/2.4.4 (Unix) Content-Length: 304 Content-Type: text/html; charset=iso-8859-1 506 Variant Also Negotiates

Variant Also Negotiates

A variant for the requested resource

/e/506

is itself a negotiable resource. This indicates a configuration error.

507 Insufficient Storage

HTTP/1.1 507 Insufficient Storage Date: Sat, 06 Apr 2013 21:10:41 GMT Server: Apache/2.4.4 (Unix) Content-Length: 389 Content-Type: text/html; charset=iso-8859-1 507 Insufficient Storage

Insufficient Storage

The method could not be performed on the resource because the server is unable to store the representation needed to successfully complete the request. There is insufficient free space left in your storage allocation.

508 Loop Detected

HTTP/1.1 508 Loop Detected Date: Sat, 06 Apr 2013 21:10:41 GMT Server: Apache/2.4.4 (Unix) Content-Length: 232 Content-Type: text/html; charset=iso-8859-1 508 Loop Detected

Loop Detected

The server terminated an operation because it encountered an infinite loop.

510 Not Extended

HTTP/1.1 510 Not Extended Date: Sat, 06 Apr 2013 21:10:41 GMT Server: Apache/2.4.4 (Unix) Content-Length: 247 Content-Type: text/html; charset=iso-8859-1 510 Not Extended

Not Extended

A mandatory extension policy in the request is not accepted by the server for this resource.

511 Network Authentication Required

HTTP/1.1 511 Network Authentication Required Date: Sat, 06 Apr 2013 21:10:41 GMT Server: Apache/2.4.4 (Unix) Content-Length: 249 Content-Type: text/html; charset=iso-8859-1 511 Network Authentication Required

Network Authentication Required

The client needs to authenticate to gain network access.

Total Unsupported Errors

Success Codes: 209, 210, 211, 212, 213, 214, 215, 216, 217, 218, 219, 220, 221, 222, 223, 224, 225 are all currently unsupported.

Redirect Codes: 300, 301, 302, 303, 304, 305, 306, 307, 308, all returned the correct ErrorDocument but due to the updates to Apache they then continue through and return the redirect url (issuing 404) instead of the actual 3xx (codes). Now they correctly redirect basically, whereas in earlier versions you could trick Apache into sending the Headers and ErrorDocument specific to the 3xx. No biggie, everyone knows the 3xx.

Client Error Codes: 418, 419, 420, 421, 425, 427, 430 currently unsupported.

Server Error Code: 509 currently unsupported.

Creating ErrorDocument Output

Htaccess Used for Triggers

Basically just save this as your .htaccess file. Then when you request, /e/503, it will trigger a 503 response. Took me a long time to come up with this trick btw.. More info about this ErrorDocument triggering trick.

Then I compiled the latest 2.4.4 Apache HTTPD from source and set it up on a staging server in order to get the newest Apache responses. The 2.2 Apaches and below had 57 codes vs 2.4.4 has 83.

ErrorDocument 100 default
ErrorDocument 101 default
errorDocument 102 default
ErrorDocument 200 default
ErrorDocument 201 default
ErrorDocument 202 default
ErrorDocument 203 default
ErrorDocument 204 default
ErrorDocument 205 default
ErrorDocument 206 default
ErrorDocument 207 default
ErrorDocument 208 default
ErrorDocument 400 default
ErrorDocument 401 default
ErrorDocument 402 default
ErrorDocument 403 default
ErrorDocument 404 default
ErrorDocument 405 default
ErrorDocument 406 default
ErrorDocument 407 default
ErrorDocument 408 default
ErrorDocument 409 default
ErrorDocument 410 default
ErrorDocument 411 default
ErrorDocument 412 default
ErrorDocument 413 default
ErrorDocument 414 default
ErrorDocument 415 default
ErrorDocument 416 default
ErrorDocument 417 default
 
Redirect 100 /e/100
Redirect 101 /e/101
Redirect 102 /e/102
Redirect 200 /e/200
Redirect 201 /e/201
Redirect 202 /e/202
Redirect 203 /e/203
Redirect 204 /e/204
Redirect 205 /e/205
Redirect 206 /e/206
Redirect 207 /e/207
Redirect 208 /e/208
Redirect 209 /e/209
Redirect 210 /e/210
Redirect 211 /e/211
Redirect 212 /e/212
Redirect 213 /e/213
Redirect 214 /e/214
Redirect 215 /e/215
Redirect 216 /e/216
Redirect 217 /e/217
Redirect 218 /e/218
Redirect 219 /e/219
Redirect 220 /e/220
Redirect 221 /e/221
Redirect 222 /e/222
Redirect 223 /e/223
Redirect 224 /e/224
Redirect 225 /e/225
Redirect 226 /e/226
Redirect 400 /e/400
Redirect 401 /e/401
Redirect 402 /e/402
Redirect 403 /e/403
Redirect 404 /e/404
Redirect 405 /e/405
Redirect 406 /e/406
Redirect 407 /e/407
Redirect 408 /e/408
Redirect 409 /e/409
Redirect 410 /e/410
Redirect 411 /e/411
Redirect 412 /e/412
Redirect 413 /e/413
Redirect 414 /e/414
Redirect 415 /e/415
Redirect 416 /e/416
Redirect 417 /e/417
Redirect 418 /e/418
Redirect 419 /e/419
Redirect 420 /e/420
Redirect 421 /e/421
Redirect 422 /e/422
Redirect 423 /e/423
Redirect 424 /e/424
Redirect 425 /e/425
Redirect 426 /e/426
Redirect 427 /e/427
Redirect 428 /e/428
Redirect 429 /e/429
Redirect 430 /e/430
Redirect 431 /e/431
Redirect 500 /e/500
Redirect 501 /e/501
Redirect 502 /e/502
Redirect 503 /e/503
Redirect 504 /e/504
Redirect 505 /e/505
Redirect 506 /e/506
Redirect 507 /e/507
Redirect 508 /e/508
Redirect 509 /e/509
Redirect 510 /e/510
Redirect 511 /e/511

cURL Script for Headers and Output

Just a simple shell script you can run from Bash after setting up the Htaccess Triggering. This just loops through all 83 Codes and requests the special uri that causes Apache to respond with the HTTP Status Code and Relevant ErrorDocument.

for c in 100 101 102 \
200 201 202 203 204 205 206 207 208 209 210 211 212 213 214 215 216 217 218 219 220 221 222 223 224 225 226 \
300 301 302 303 304 305 306 307 308 \
400 401 402 403 404 405 406 407 408 409 410 411 412 413 414 415 416 417 418 419 420 421 422 423 424 425 426 427 428 429 430 431 \
500 501 502 503 504 505 506 507 508 509 510 511;
do
   curl -L4siv -o - --connect-timeout 1 --max-time 1 --retry 0 --max-redirs 3 -A 'AskApache' -e 'localhost' --resolve a.com:80:127.0.0.1 http://a.com/e/${c} 2>&1;
done;

Extra Info

Apache Internal Status Code Names

The rest of the 83 Codes are NULL for future use.

100 = HTTP_CONTINUE
101 = HTTP_SWITCHING_PROTOCOLS
102 = HTTP_PROCESSING
200 = HTTP_OK
201 = HTTP_CREATED
202 = HTTP_ACCEPTED
203 = HTTP_NON_AUTHORITATIVE
204 = HTTP_NO_CONTENT
205 = HTTP_RESET_CONTENT
206 = HTTP_PARTIAL_CONTENT
207 = HTTP_MULTI_STATUS
208 = HTTP_ALREADY_REPORTED
226 = HTTP_IM_USED
300 = HTTP_MULTIPLE_CHOICES
301 = HTTP_MOVED_PERMANENTLY
302 = HTTP_MOVED_TEMPORARILY
303 = HTTP_SEE_OTHER
304 = HTTP_NOT_MODIFIED
305 = HTTP_USE_PROXY
307 = HTTP_TEMPORARY_REDIRECT
308 = HTTP_PERMANENT_REDIRECT
400 = HTTP_BAD_REQUEST
401 = HTTP_UNAUTHORIZED
402 = HTTP_PAYMENT_REQUIRED
403 = HTTP_FORBIDDEN
404 = HTTP_NOT_FOUND
405 = HTTP_METHOD_NOT_ALLOWED
406 = HTTP_NOT_ACCEPTABLE
407 = HTTP_PROXY_AUTHENTICATION_REQUIRED
408 = HTTP_REQUEST_TIME_OUT
409 = HTTP_CONFLICT
410 = HTTP_GONE
411 = HTTP_LENGTH_REQUIRED
412 = HTTP_PRECONDITION_FAILED
413 = HTTP_REQUEST_ENTITY_TOO_LARGE
414 = HTTP_REQUEST_URI_TOO_LARGE
415 = HTTP_UNSUPPORTED_MEDIA_TYPE
416 = HTTP_RANGE_NOT_SATISFIABLE
417 = HTTP_EXPECTATION_FAILED
422 = HTTP_UNPROCESSABLE_ENTITY
423 = HTTP_LOCKED
424 = HTTP_FAILED_DEPENDENCY
426 = HTTP_UPGRADE_REQUIRED
428 = HTTP_PRECONDITION_REQUIRED
429 = HTTP_TOO_MANY_REQUESTS
431 = HTTP_REQUEST_HEADER_FIELDS_TOO_LARGE
500 = HTTP_INTERNAL_SERVER_ERROR
501 = HTTP_NOT_IMPLEMENTED
502 = HTTP_BAD_GATEWAY
503 = HTTP_SERVICE_UNAVAILABLE
504 = HTTP_GATEWAY_TIME_OUT
505 = HTTP_VERSION_NOT_SUPPORTED
506 = HTTP_VARIANT_ALSO_VARIES
507 = HTTP_INSUFFICIENT_STORAGE
508 = HTTP_LOOP_DETECTED
510 = HTTP_NOT_EXTENDED
511 = HTTP_NETWORK_AUTHENTICATION_REQUIRED

3xx Browser Support / Live Tests

Test 3xx Redirection Capabilities of your browser. Thanks to green bytes!

Test Case		Firefox 18	Microsoft IE 9	Microsoft IE 10 (Consumer Preview)	Opera 12	Safari 5.1	Google Chrome 22	Konqueror 4.7.2
Summary		Score: 100	Score: 89	Score: 91	Score: 85	Score: 89	Score: 100	Score: 64

Connection Dropped

Apache drops the connection for these codes.

400 BAD_REQUEST
408 REQUEST_TIME_OUT
411 LENGTH_REQUIRED
413 REQUEST_ENTITY_TOO_LARGE
414 REQUEST_URI_TOO_LARGE
500 INTERNAL_SERVER_ERROR
503 SERVICE_UNAVAILABLE
501 NOT_IMPLEMENTED

Status Codes in C

Probably my all time favorite, from Wireshark.

static const value_string vals_status_code[] = {
  { 100, "Continue" },
  { 101, "Switching Protocols" },
  { 102, "Processing" },
  { 199, "Informational - Others" },
 
  { 200, "OK"},
  { 201, "Created"},
  { 202, "Accepted"},
  { 203, "Non-authoritative Information"},
  { 204, "No Content"},
  { 205, "Reset Content"},
  { 206, "Partial Content"},
  { 207, "Multi-Status"},
  { 299, "Success - Others"},
 
  { 300, "Multiple Choices"},
  { 301, "Moved Permanently"},
  { 302, "Found"},
  { 303, "See Other"},
  { 304, "Not Modified"},
  { 305, "Use Proxy"},
  { 307, "Temporary Redirect"},
  { 399, "Redirection - Others"},
 
  { 400, "Bad Request"},
  { 401, "Unauthorized"},
  { 402, "Payment Required"},
  { 403, "Forbidden"},
  { 404, "Not Found"},
  { 405, "Method Not Allowed"},
  { 406, "Not Acceptable"},
  { 407, "Proxy Authentication Required"},
  { 408, "Request Time-out"},
  { 409, "Conflict"},
  { 410, "Gone"},
  { 411, "Length Required"},
  { 412, "Precondition Failed"},
  { 413, "Request Entity Too Large"},
  { 414, "Request-URI Too Long"},
  { 415, "Unsupported Media Type"},
  { 416, "Requested Range Not Satisfiable"},
  { 417, "Expectation Failed"},
  { 418, "I'm a teapot"},    /* RFC 2324 */
  { 422, "Unprocessable Entity"},
  { 423, "Locked"},
  { 424, "Failed Dependency"},
  { 499, "Client Error - Others"},
 
  { 500, "Internal Server Error"},
  { 501, "Not Implemented"},
  { 502, "Bad Gateway"},
  { 503, "Service Unavailable"},
  { 504, "Gateway Time-out"},
  { 505, "HTTP Version not supported"},
  { 507, "Insufficient Storage"},
  { 599, "Server Error - Others"},
 
  { 0,   NULL}
};

PHP of Updated Codes

This type of table is used by software like WordPress, Zend, Snoopy, Curl, you name it. Always good to update.

array(
  // INFORMATIONAL CODES
  100 => 'Continue',
  101 => 'Switching Protocols',
  102 => 'Processing',
  
  // SUCCESS CODES
  200 => 'OK',
  201 => 'Created',
  202 => 'Accepted',
  203 => 'Non-Authoritative Information',
  204 => 'No Content',
  205 => 'Reset Content',
  206 => 'Partial Content',
  207 => 'Multi-status',
  208 => 'Already Reported',
  
  // REDIRECTION CODES
  300 => 'Multiple Choices',
  301 => 'Moved Permanently',
  302 => 'Found',
  303 => 'See Other',
  304 => 'Not Modified',
  305 => 'Use Proxy',
  306 => 'Switch Proxy', // Deprecated
  307 => 'Temporary Redirect',
  
  // CLIENT ERROR
  400 => 'Bad Request',
  401 => 'Unauthorized',
  402 => 'Payment Required',
  403 => 'Forbidden',
  404 => 'Not Found',
  405 => 'Method Not Allowed',
  406 => 'Not Acceptable',
  407 => 'Proxy Authentication Required',
  408 => 'Request Time-out',
  409 => 'Conflict',
  410 => 'Gone',
  411 => 'Length Required',
  412 => 'Precondition Failed',
  413 => 'Request Entity Too Large',
  414 => 'Request-URI Too Large',
  415 => 'Unsupported Media Type',
  416 => 'Requested range not satisfiable',
  417 => 'Expectation Failed',
  418 => 'I\'m a teapot',
  422 => 'Unprocessable Entity',
  423 => 'Locked',
  424 => 'Failed Dependency',
  425 => 'Unordered Collection',
  426 => 'Upgrade Required',
  428 => 'Precondition Required',
  429 => 'Too Many Requests',
  431 => 'Request Header Fields Too Large',
  
  // SERVER ERROR
  500 => 'Internal Server Error',
  501 => 'Not Implemented',
  502 => 'Bad Gateway',
  503 => 'Service Unavailable',
  504 => 'Gateway Time-out',
  505 => 'HTTP Version not supported',
  506 => 'Variant Also Negotiates',
  507 => 'Insufficient Storage',
  508 => 'Loop Detected',
  511 => 'Network Authentication Required'
);

View all MySQL Variables for Pasting into my.cnf

AskApache — Fri, 05 Apr 2013 18:40:50 +0000

AskApache.com

This is really useful for me because I work with dozens of different database servers. The first thing I do is run this command and paste it into the servers /etc/my.cnf file. That way I will always know the original value and it just makes life much easier.

Command to run in Shell

$ mysql -NBe 'SHOW VARIABLES' | sed 's,\t,^=,' | column -ts^ | tr "\n" '@' | eval $(echo "sed '" "s,@\("{a..z}"\),\n\n\1,;" "'") | tr '@' "\n" | sed 's,^,# ,g'

Command Breakdown

Show all Variables using Batch Mode
mysql -NBe 'SHOW VARIABLES'
Remove tabs and add the '^='
sed 's,\t,^=,'
Align the left column of varnames and the right column of values
column -ts^
Replace the end-of-line with '@'
tr "\n" '@'
Add 3 blank lines before the first occurance of each letter in the alphabet
eval $(echo "sed '" "s,@$"{a..z}"$,\n\n\1,;" "'")
Replace '@' with newlines
tr '@' "\n"
Make every line commented by '# '
sed 's,^,# ,g'

MySql Variables Commented

Paste this into your servers /etc/my.cnf file.

# auto_increment_increment                           = 1
#
#
# auto_increment_offset                              = 1
# autocommit                                         = ON
# automatic_sp_privileges                            = ON
#
#
# back_log                                           = 100
# basedir                                            = /usr
# big_tables                                         = OFF
# binlog_cache_size                                  = 32768
# binlog_direct_non_transactional_updates            = OFF
# binlog_format                                      = STATEMENT
# binlog_stmt_cache_size                             = 32768
# bulk_insert_buffer_size                            = 8388608
#
#
# character_set_client                               = latin1
# character_set_connection                           = latin1
# character_set_database                             = utf8
# character_set_filesystem                           = binary
# character_set_results                              = latin1
# character_set_server                               = utf8
# character_set_system                               = utf8
# character_sets_dir                                 = /usr/share/mysql/charsets/
# collation_connection                               = latin1_swedish_ci
# collation_database                                 = utf8_general_ci
# collation_server                                   = utf8_general_ci
# completion_type                                    = NO_CHAIN
# concurrent_insert                                  = AUTO
# connect_timeout                                    = 10
#
#
# datadir                                            = /var/lib/mysql/
# date_format                                        = %Y-%m-%d
# datetime_format                                    = %Y-%m-%d %H:%i:%s
# default_storage_engine                             = InnoDB
# default_week_format                                = 0
# delay_key_write                                    = ON
# delayed_insert_limit                               = 100
# delayed_insert_timeout                             = 300
# delayed_queue_size                                 = 1000
# div_precision_increment                            = 4
#
#
# engine_condition_pushdown                          = ON
# error_count                                        = 0
# event_scheduler                                    = OFF
# expire_logs_days                                   = 7
# external_user                                      =
#
#
# flush                                              = OFF
# flush_time                                         = 0
# foreign_key_checks                                 = ON
# ft_boolean_syntax                                  = + -><()~*:""&|
# ft_max_word_len                                    = 84
# ft_min_word_len                                    = 4
# ft_query_expansion_limit                           = 20
# ft_stopword_file                                   = (built-in)
#
#
# general_log                                        = OFF
# general_log_file                                   = /var/lib/mysqllogs/general-log
# group_concat_max_len                               = 1024
#
#
# have_compress                                      = YES
# have_crypt                                         = YES
# have_csv                                           = YES
# have_dynamic_loading                               = YES
# have_geometry                                      = YES
# have_innodb                                        = YES
# have_ndbcluster                                    = NO
# have_openssl                                       = DISABLED
# have_partitioning                                  = YES
# have_profiling                                     = YES
# have_query_cache                                   = YES
# have_rtree_keys                                    = YES
# have_ssl                                           = DISABLED
# have_symlink                                       = YES
# hostname                                           = killerdbees.ouch.node5.net
#
#
# identity                                           = 0
# ignore_builtin_innodb                              = OFF
# init_connect                                       = SET collation_connection = utf8_general_ci,NAMES utf8
# init_file                                          =
# init_slave                                         =
# innodb_adaptive_flushing                           = ON
# innodb_adaptive_hash_index                         = ON
# innodb_additional_mem_pool_size                    = 8388608
# innodb_autoextend_increment                        = 8
# innodb_autoinc_lock_mode                           = 1
# innodb_buffer_pool_instances                       = 1
# innodb_buffer_pool_size                            = 157286400
# innodb_change_buffering                            = all
# innodb_checksums                                   = ON
# innodb_commit_concurrency                          = 0
# innodb_concurrency_tickets                         = 500
# innodb_data_file_path                              = ibdata1:10M:autoextend
# innodb_data_home_dir                               =
# innodb_doublewrite                                 = ON
# innodb_fast_shutdown                               = 1
# innodb_file_format                                 = Antelope
# innodb_file_format_check                           = ON
# innodb_file_format_max                             = Antelope
# innodb_file_per_table                              = OFF
# innodb_flush_log_at_trx_commit                     = 2
# innodb_flush_method                                =
# innodb_force_load_corrupted                        = OFF
# innodb_force_recovery                              = 0
# innodb_io_capacity                                 = 200
# innodb_large_prefix                                = OFF
# innodb_lock_wait_timeout                           = 50
# innodb_locks_unsafe_for_binlog                     = OFF
# innodb_log_buffer_size                             = 8388608
# innodb_log_file_size                               = 5242880
# innodb_log_files_in_group                          = 2
# innodb_log_group_home_dir                          = ./
# innodb_max_dirty_pages_pct                         = 75
# innodb_max_purge_lag                               = 0
# innodb_mirrored_log_groups                         = 1
# innodb_old_blocks_pct                              = 37
# innodb_old_blocks_time                             = 0
# innodb_open_files                                  = 300
# innodb_print_all_deadlocks                         = OFF
# innodb_purge_batch_size                            = 20
# innodb_purge_threads                               = 0
# innodb_random_read_ahead                           = OFF
# innodb_read_ahead_threshold                        = 56
# innodb_read_io_threads                             = 4
# innodb_replication_delay                           = 0
# innodb_rollback_on_timeout                         = OFF
# innodb_rollback_segments                           = 128
# innodb_spin_wait_delay                             = 6
# innodb_stats_method                                = nulls_equal
# innodb_stats_on_metadata                           = ON
# innodb_stats_sample_pages                          = 8
# innodb_strict_mode                                 = OFF
# innodb_support_xa                                  = ON
# innodb_sync_spin_loops                             = 30
# innodb_table_locks                                 = ON
# innodb_thread_concurrency                          = 0
# innodb_thread_sleep_delay                          = 10000
# innodb_use_native_aio                              = ON
# innodb_use_sys_malloc                              = ON
# innodb_version                                     = 5.5.30
# innodb_write_io_threads                            = 4
# insert_id                                          = 0
# interactive_timeout                                = 36000
#
#
# join_buffer_size                                   = 1048576
#
#
# keep_files_on_create                               = OFF
# key_buffer_size                                    = 134217728
# key_cache_age_threshold                            = 300
# key_cache_block_size                               = 1024
# key_cache_division_limit                           = 100
#
#
# large_files_support                                = ON
# large_page_size                                    = 0
# large_pages                                        = OFF
# last_insert_id                                     = 0
# lc_messages                                        = en_US
# lc_messages_dir                                    = /usr/share/mysql/
# lc_time_names                                      = en_US
# license                                            = GPL
# local_infile                                       = ON
# lock_wait_timeout                                  = 31536000
# locked_in_memory                                   = OFF
# log                                                = OFF
# log_bin                                            = ON
# log_bin_trust_function_creators                    = OFF
# log_error                                          = /var/log/mysqld.log
# log_output                                         = FILE
# log_queries_not_using_indexes                      = OFF
# log_slave_updates                                  = OFF
# log_slow_queries                                   = ON
# log_warnings                                       = 1
# long_query_time                                    = 5.000000
# low_priority_updates                               = OFF
# lower_case_file_system                             = OFF
# lower_case_table_names                             = 0
#
#
# max_allowed_packet                                 = 536870912
# max_binlog_cache_size                              = 18446744073709547520
# max_binlog_size                                    = 1073741824
# max_binlog_stmt_cache_size                         = 18446744073709547520
# max_connect_errors                                 = 10000
# max_connections                                    = 500
# max_delayed_threads                                = 20
# max_error_count                                    = 64
# max_heap_table_size                                = 157286400
# max_insert_delayed_threads                         = 20
# max_join_size                                      = 18446744073709551615
# max_length_for_sort_data                           = 1024
# max_long_data_size                                 = 536870912
# max_prepared_stmt_count                            = 16382
# max_relay_log_size                                 = 0
# max_seeks_for_key                                  = 18446744073709551615
# max_sort_length                                    = 1024
# max_sp_recursion_depth                             = 0
# max_tmp_tables                                     = 32
# max_user_connections                               = 0
# max_write_lock_count                               = 18446744073709551615
# metadata_locks_cache_size                          = 1024
# min_examined_row_limit                             = 0
# multi_range_count                                  = 256
# myisam_data_pointer_size                           = 6
# myisam_max_sort_file_size                          = 9223372036853727232
# myisam_mmap_size                                   = 18446744073709551615
# myisam_recover_options                             = OFF
# myisam_repair_threads                              = 1
# myisam_sort_buffer_size                            = 12582912
# myisam_stats_method                                = nulls_unequal
# myisam_use_mmap                                    = OFF
#
#
# net_buffer_length                                  = 16384
# net_read_timeout                                   = 30
# net_retry_count                                    = 10
# net_write_timeout                                  = 60
# new                                                = OFF
#
#
# old                                                = OFF
# old_alter_table                                    = OFF
# old_passwords                                      = OFF
# open_files_limit                                   = 40000
# optimizer_prune_level                              = 1
# optimizer_search_depth                             = 62
#
#
# performance_schema                                 = OFF
# performance_schema_events_waits_history_long_size  = 10000
# performance_schema_events_waits_history_size       = 10
# performance_schema_max_cond_classes                = 80
# performance_schema_max_cond_instances              = 1000
# performance_schema_max_file_classes                = 50
# performance_schema_max_file_handles                = 32768
# performance_schema_max_file_instances              = 10000
# performance_schema_max_mutex_classes               = 200
# performance_schema_max_mutex_instances             = 1000000
# performance_schema_max_rwlock_classes              = 30
# performance_schema_max_rwlock_instances            = 1000000
# performance_schema_max_table_handles               = 100000
# performance_schema_max_table_instances             = 50000
# performance_schema_max_thread_classes              = 50
# performance_schema_max_thread_instances            = 1000
# pid_file                                           = /var/run/mysqld/mysqld.pid
# plugin_dir                                         = /usr/lib64/mysql/plugin/
# port                                               = 3306
# preload_buffer_size                                = 32768
# profiling                                          = OFF
# profiling_history_size                             = 15
# protocol_version                                   = 10
# proxy_user                                         =
# pseudo_slave_mode                                  = OFF
# pseudo_thread_id                                   = 40992
#
#
# query_alloc_block_size                             = 8192
# query_cache_limit                                  = 1048576
# query_cache_min_res_unit                           = 4096
# query_cache_size                                   = 2097152
# query_cache_type                                   = ON
# query_cache_wlock_invalidate                       = OFF
# query_prealloc_size                                = 8192
#
#
# rand_seed1                                         = 0
# rand_seed2                                         = 0
# range_alloc_block_size                             = 4096
# read_buffer_size                                   = 4194304
# read_only                                          = OFF
# read_rnd_buffer_size                               = 5242880
# relay_log                                          =
# relay_log_index                                    =
# relay_log_info_file                                = relay-log.info
# relay_log_purge                                    = ON
# relay_log_recovery                                 = OFF
# relay_log_space_limit                              = 0
# report_host                                        =
# report_password                                    =
# report_port                                        = 3306
# report_user                                        =
# rpl_recovery_rank                                  = 0
#
#
# secure_auth                                        = OFF
# secure_file_priv                                   =
# server_id                                          = 224
# skip_external_locking                              = ON
# skip_name_resolve                                  = ON
# skip_networking                                    = OFF
# skip_show_database                                 = OFF
# slave_compressed_protocol                          = OFF
# slave_exec_mode                                    = STRICT
# slave_load_tmpdir                                  = /var/lib/mysqltmp
# slave_max_allowed_packet                           = 1073741824
# slave_net_timeout                                  = 3600
# slave_skip_errors                                  = OFF
# slave_transaction_retries                          = 10
# slave_type_conversions                             =
# slow_launch_time                                   = 2
# slow_query_log                                     = ON
# slow_query_log_file                                = /var/lib/mysqllogs/slow-log
# socket                                             = /var/lib/mysql/mysql.sock
# sort_buffer_size                                   = 5242880
# sql_auto_is_null                                   = OFF
# sql_big_selects                                    = ON
# sql_big_tables                                     = OFF
# sql_buffer_result                                  = OFF
# sql_log_bin                                        = ON
# sql_log_off                                        = OFF
# sql_low_priority_updates                           = OFF
# sql_max_join_size                                  = 18446744073709551615
# sql_mode                                           = NO_ENGINE_SUBSTITUTION
# sql_notes                                          = ON
# sql_quote_show_create                              = ON
# sql_safe_updates                                   = OFF
# sql_select_limit                                   = 18446744073709551615
# sql_slave_skip_counter                             = 0
# sql_warnings                                       = OFF
# ssl_ca                                             =
# ssl_capath                                         =
# ssl_cert                                           =
# ssl_cipher                                         =
# ssl_key                                            =
# storage_engine                                     = InnoDB
# stored_program_cache                               = 256
# sync_binlog                                        = 0
# sync_frm                                           = ON
# sync_master_info                                   = 0
# sync_relay_log                                     = 0
# sync_relay_log_info                                = 0
# system_time_zone                                   = EDT
#
#
# table_definition_cache                             = 1200
# table_open_cache                                   = 1000
# thread_cache_size                                  = 150
# thread_concurrency                                 = 10
# thread_handling                                    = one-thread-per-connection
# thread_stack                                       = 262144
# time_format                                        = %H:%i:%s
# time_zone                                          = SYSTEM
# timed_mutexes                                      = OFF
# timestamp                                          = 1365185527
# tmp_table_size                                     = 157286400
# tmpdir                                             = /var/lib/mysqltmp
# transaction_alloc_block_size                       = 8192
# transaction_prealloc_size                          = 4096
# tx_isolation                                       = REPEATABLE-READ
#
#
# unique_checks                                      = ON
# updatable_views_with_limit                         = YES
#
#
# version                                            = 5.5.30-log
# version_comment                                    = Distributed by The IUS Community Project
# version_compile_machine                            = x86_64
# version_compile_os                                 = Linux
#
#
# wait_timeout                                       = 36000
# warning_count                                      = 0

MySQL Variables Listing

Just a listing of the ones being used on my killerdbees server.

auto_increment_increment: 1
auto_increment_offset: 1
autocommit: ON
automatic_sp_privileges: ON
back_log: 100
basedir: /usr
big_tables: OFF
binlog_cache_size: 32768
binlog_direct_non_transactional_updates: OFF
binlog_format: STATEMENT
binlog_stmt_cache_size: 32768
bulk_insert_buffer_size: 8388608
character_set_client: latin1
character_set_connection: latin1
character_set_database: utf8
character_set_filesystem: binary
character_set_results: latin1
character_set_server: utf8
character_set_system: utf8
character_sets_dir: /usr/share/mysql/charsets/
collation_connection: latin1_swedish_ci
collation_database: utf8_general_ci
collation_server: utf8_general_ci
completion_type: NO_CHAIN
concurrent_insert: AUTO
connect_timeout: 10
datadir: /var/lib/mysql/
date_format: %Y-%m-%d
datetime_format: %Y-%m-%d %H:%i:%s
default_storage_engine: InnoDB
default_week_format: 0
delay_key_write: ON
delayed_insert_limit: 100
delayed_insert_timeout: 300
delayed_queue_size: 1000
div_precision_increment: 4
engine_condition_pushdown: ON
error_count: 0
event_scheduler: OFF
expire_logs_days: 7
external_user
flush: OFF
flush_time: 0
foreign_key_checks: ON
ft_boolean_syntax: + -><()~*:""&|
ft_max_word_len: 84
ft_min_word_len: 4
ft_query_expansion_limit: 20
ft_stopword_file: (built-in)
general_log: OFF
general_log_file: /var/lib/mysqllogs/general-log
group_concat_max_len: 1024
have_compress: YES
have_crypt: YES
have_csv: YES
have_dynamic_loading: YES
have_geometry: YES
have_innodb: YES
have_ndbcluster: NO
have_openssl: DISABLED
have_partitioning: YES
have_profiling: YES
have_query_cache: YES
have_rtree_keys: YES
have_ssl: DISABLED
have_symlink: YES
hostname: killerdbees.ouch.node5.net
identity: 0
ignore_builtin_innodb: OFF
init_connect: SET collation_connection = utf8_general_ci,NAMES utf8
init_file
init_slave
innodb_adaptive_flushing: ON
innodb_adaptive_hash_index: ON
innodb_additional_mem_pool_size: 8388608
innodb_autoextend_increment: 8
innodb_autoinc_lock_mode: 1
innodb_buffer_pool_instances: 1
innodb_buffer_pool_size: 157286400
innodb_change_buffering: all
innodb_checksums: ON
innodb_commit_concurrency: 0
innodb_concurrency_tickets: 500
innodb_data_file_path: ibdata1:10M:autoextend
innodb_data_home_dir
innodb_doublewrite: ON
innodb_fast_shutdown: 1
innodb_file_format: Antelope
innodb_file_format_check: ON
innodb_file_format_max: Antelope
innodb_file_per_table: OFF
innodb_flush_log_at_trx_commit: 2
innodb_flush_method
innodb_force_load_corrupted: OFF
innodb_force_recovery: 0
innodb_io_capacity: 200
innodb_large_prefix: OFF
innodb_lock_wait_timeout: 50
innodb_locks_unsafe_for_binlog: OFF
innodb_log_buffer_size: 8388608
innodb_log_file_size: 5242880
innodb_log_files_in_group: 2
innodb_log_group_home_dir: ./
innodb_max_dirty_pages_pct: 75
innodb_max_purge_lag: 0
innodb_mirrored_log_groups: 1
innodb_old_blocks_pct: 37
innodb_old_blocks_time: 0
innodb_open_files: 300
innodb_print_all_deadlocks: OFF
innodb_purge_batch_size: 20
innodb_purge_threads: 0
innodb_random_read_ahead: OFF
innodb_read_ahead_threshold: 56
innodb_read_io_threads: 4
innodb_replication_delay: 0
innodb_rollback_on_timeout: OFF
innodb_rollback_segments: 128
innodb_spin_wait_delay: 6
innodb_stats_method: nulls_equal
innodb_stats_on_metadata: ON
innodb_stats_sample_pages: 8
innodb_strict_mode: OFF
innodb_support_xa: ON
innodb_sync_spin_loops: 30
innodb_table_locks: ON
innodb_thread_concurrency: 0
innodb_thread_sleep_delay: 10000
innodb_use_native_aio: ON
innodb_use_sys_malloc: ON
innodb_version: 5.5.30
innodb_write_io_threads: 4
insert_id: 0
interactive_timeout: 36000
join_buffer_size: 1048576
keep_files_on_create: OFF
key_buffer_size: 134217728
key_cache_age_threshold: 300
key_cache_block_size: 1024
key_cache_division_limit: 100
large_files_support: ON
large_page_size: 0
large_pages: OFF
last_insert_id: 0
lc_messages: en_US
lc_messages_dir: /usr/share/mysql/
lc_time_names: en_US
license: GPL
local_infile: ON
lock_wait_timeout: 31536000
locked_in_memory: OFF
log: OFF
log_bin: ON
log_bin_trust_function_creators: OFF
log_error: /var/log/mysqld.log
log_output: FILE
log_queries_not_using_indexes: OFF
log_slave_updates: OFF
log_slow_queries: ON
log_warnings: 1
long_query_time: 5.000000
low_priority_updates: OFF
lower_case_file_system: OFF
lower_case_table_names: 0
max_allowed_packet: 536870912
max_binlog_cache_size: 18446744073709547520
max_binlog_size: 1073741824
max_binlog_stmt_cache_size: 18446744073709547520
max_connect_errors: 10000
max_connections: 500
max_delayed_threads: 20
max_error_count: 64
max_heap_table_size: 157286400
max_insert_delayed_threads: 20
max_join_size: 18446744073709551615
max_length_for_sort_data: 1024
max_long_data_size: 536870912
max_prepared_stmt_count: 16382
max_relay_log_size: 0
max_seeks_for_key: 18446744073709551615
max_sort_length: 1024
max_sp_recursion_depth: 0
max_tmp_tables: 32
max_user_connections: 0
max_write_lock_count: 18446744073709551615
metadata_locks_cache_size: 1024
min_examined_row_limit: 0
multi_range_count: 256
myisam_data_pointer_size: 6
myisam_max_sort_file_size: 9223372036853727232
myisam_mmap_size: 18446744073709551615
myisam_recover_options: OFF
myisam_repair_threads: 1
myisam_sort_buffer_size: 12582912
myisam_stats_method: nulls_unequal
myisam_use_mmap: OFF
net_buffer_length: 16384
net_read_timeout: 30
net_retry_count: 10
net_write_timeout: 60
new: OFF
old: OFF
old_alter_table: OFF
old_passwords: OFF
open_files_limit: 40000
optimizer_prune_level: 1
optimizer_search_depth: 62
optimizer_switch: index_merge=on,index_merge_union=on,index_merge_sort_union=on,index_merge_intersection=on,engine_condition_pushdown=on
performance_schema: OFF
performance_schema_events_waits_history_long_size: 10000
performance_schema_events_waits_history_size: 10
performance_schema_max_cond_classes: 80
performance_schema_max_cond_instances: 1000
performance_schema_max_file_classes: 50
performance_schema_max_file_handles: 32768
performance_schema_max_file_instances: 10000
performance_schema_max_mutex_classes: 200
performance_schema_max_mutex_instances: 1000000
performance_schema_max_rwlock_classes: 30
performance_schema_max_rwlock_instances: 1000000
performance_schema_max_table_handles: 100000
performance_schema_max_table_instances: 50000
performance_schema_max_thread_classes: 50
performance_schema_max_thread_instances: 1000
pid_file: /var/run/mysqld/mysqld.pid
plugin_dir: /usr/lib64/mysql/plugin/
port: 3306
preload_buffer_size: 32768
profiling: OFF
profiling_history_size: 15
protocol_version: 10
proxy_user
pseudo_slave_mode: OFF
pseudo_thread_id: 40992
query_alloc_block_size: 8192
query_cache_limit: 1048576
query_cache_min_res_unit: 4096
query_cache_size: 2097152
query_cache_type: ON
query_cache_wlock_invalidate: OFF
query_prealloc_size: 8192
rand_seed1: 0
rand_seed2: 0
range_alloc_block_size: 4096
read_buffer_size: 4194304
read_only: OFF
read_rnd_buffer_size: 5242880
relay_log
relay_log_index
relay_log_info_file: relay-log.info
relay_log_purge: ON
relay_log_recovery: OFF
relay_log_space_limit: 0
report_host
report_password
report_port: 3306
report_user
rpl_recovery_rank: 0
secure_auth: OFF
secure_file_priv
server_id: 224
skip_external_locking: ON
skip_name_resolve: ON
skip_networking: OFF
skip_show_database: OFF
slave_compressed_protocol: OFF
slave_exec_mode: STRICT
slave_load_tmpdir: /var/lib/mysqltmp
slave_max_allowed_packet: 1073741824
slave_net_timeout: 3600
slave_skip_errors: OFF
slave_transaction_retries: 10
slave_type_conversions
slow_launch_time: 2
slow_query_log: ON
slow_query_log_file: /var/lib/mysqllogs/slow-log
socket: /var/lib/mysql/mysql.sock
sort_buffer_size: 5242880
sql_auto_is_null: OFF
sql_big_selects: ON
sql_big_tables: OFF
sql_buffer_result: OFF
sql_log_bin: ON
sql_log_off: OFF
sql_low_priority_updates: OFF
sql_max_join_size: 18446744073709551615
sql_mode: NO_ENGINE_SUBSTITUTION
sql_notes: ON
sql_quote_show_create: ON
sql_safe_updates: OFF
sql_select_limit: 18446744073709551615
sql_slave_skip_counter: 0
sql_warnings: OFF
ssl_ca
ssl_capath
ssl_cert
ssl_cipher
ssl_key
storage_engine: InnoDB
stored_program_cache: 256
sync_binlog: 0
sync_frm: ON
sync_master_info: 0
sync_relay_log: 0
sync_relay_log_info: 0
system_time_zone: EDT
table_definition_cache: 1200
table_open_cache: 1000
thread_cache_size: 150
thread_concurrency: 10
thread_handling: one-thread-per-connection
thread_stack: 262144
time_format: %H:%i:%s
time_zone: SYSTEM
timed_mutexes: OFF
timestamp: 1365185527
tmp_table_size: 157286400
tmpdir: /var/lib/mysqltmp
transaction_alloc_block_size: 8192
transaction_prealloc_size: 4096
tx_isolation: REPEATABLE-READ
unique_checks: ON
updatable_views_with_limit: YES
version: 5.5.30-log
version_comment: Distributed by The IUS Community Project
version_compile_machine: x86_64
version_compile_os: Linux
wait_timeout: 36000
warning_count: 0

…View all MySQL Variables for Pasting into my.cnf… originally appeared on AskApache.com

The post View all MySQL Variables for Pasting into my.cnf appeared first on AskApache.

AskApache

Show Events that Occurred on this day in the Past

The Function: askapache_calendar

Download OpenBSD Calendars

Calendar Function Examples

Source Code for Calendar Function

Bash alternative to Reflector for Ranking Mirrors

Creating /etc/pacman.d/mirrorlist

How it works

Why pure bash over reflector?

reflector.sh Source

Xargs running curl in parallel

Htaccess – The Ultimate Guide

Htaccess - Evolved

AskApache Htaccess Journey

What Is .htaccess

Creating Htaccess Files

Htaccess Scope

Htaccess File Syntax

Htaccess Directives

Main Server Config Examples

Example .htaccess Code Snippets

Redirect Everyone Except IP address to alternate page

When developing sites

Fix double-login prompt

Set Timezone of the Server (GMT)

Administrator Email for ErrorDocument

ServerSignature for ErrorDocument

Charset and Language headers

Disallow Script Execution

Deny Request Methods

Force "File Save As" Prompt

Show CGI Source Code

Serve all .pdf files on your site using .htaccess and mod_rewrite with the php script.

Rewrite to www

Rewrite to www dynamically

301 Redirect Old File

301 Redirect Entire Directory

Protecting your php.cgi

Set Cookie based on Request

Set Cookie with env variable

Custom ErrorDocuments

Implementing a Caching Scheme with .htaccess

Password Protect single file

Password Protect multiple files

Send Custom Headers

Blocking based on User-Agent Header

Blocking with RewriteCond

.htaccess for mod_php

.htaccess for php as cgi

Shell wrapper for custom php.ini

Add values from HTTP Headers

Stop hotlinking

Turn logging off for IP

Turn logging on for IP

Example .htaccess Files

Advanced Mod_Rewrites

Directory Protection

Password Protect wp-login.php

Password Protect wp-admin

Protect wp-content

Protect wp-includes

Common Exploits

Stop Hotlinking

Safe Request Methods

Forbid Proxies

Real wp-comments-post.php

HTTP PROTOCOL

SPECIFY CHARACTERS

BAD Content Length

BAD Content Type

Missing HTTP_HOST

Bogus Graphics Exploit

No UserAgent, Not POST

No Referer, No Comment

Trackback Spam

Map all URIs except those corresponding to existing files to a handler

Map any request to a handler

And for CGI scripts:

Map URIs corresponding to existing files to a handler instead

`ServerSignature` for `ErrorDocument`