PHP DSO ..

PHP DSO

DSO – Dynamically Shared Objects

Apache with PHP can be installed in two different ways.

  • Statically embed the PHP binary into the Apache binary. This is probably the fastest and best way to run PHP
  • Install Apache and PHP is by using Apaches DSO module

Why DSO?

Apache supports adding modules on instead of embedding them in the httpd binary. This works well when you dont want to re-compile Apache each time a module is updated, or if you want to add on numerous modules for development purposes

System Administrators Dream: Allows developers to upgrade PHP without having to recompile Apache

Continue reading…

Install FFMPEG on a VPS using YUM

Installation Steps :

preparing step :

Edit or create a file /etc/yum.repos.d/dag.repo. Add lines below at the end of the file:

[dag]
name=Dag RPM Repository for Red Hat Enterprise Linux
baseurl=http://apt.sw.be/redhat/el$releasever/en/$basearch/dag
gpgcheck=1
enabled=1

Add line below at the end of the file /etc/ld.so.conf:

/usr/local/lib

Continue reading…

Mod_Security .. Intro

Mod_Security 2.5

Need for a Webserver Security Module

It is pretty difficult to secure application softwares. Common targets are Open Source software like PHPNuke. An attacker can easily find out vulnerabilities in the code.

If your application is vulnerable to SQL injection, invoking the URL above may very well delete all user data from your application.
You can use mod_rewrite to avoid this attack. it is very easy to detect the words drop and table, and then redirect the client away from the original URL. A determined attacker could simply invoke the same URL as above but use the POST method instead of GET. Since POST variables are not considered in the normal processing of most modules, the attack would go through.

To prevent the drop table SQL injection attack with mod_security, add the following to your Apache configuration:

SecFilter drop[[:space:]]table

The only parameter is a regular expression to be applied to the incoming request. This seems achievable with mod_rewrite, but the difference here is that mod_security will detect and prevent attacks performed using either GET or POST.

Continue reading…