Home
Search results “X content type options nginx”
Server einrichten - X-Content-Type-Options bei nginx
 
02:20
In diesem Tutorial schauen wir uns den header zu X-Content-Type Options an. ACHTUNG: HK-HOSTING EXISTIERT NICHT MEHR! Die Techniken ab Video 5 sind allerdings immer noch genauso gültig wie immer. Bei Fragen einfach schreiben. ❤❤❤ Früherer Zugang zu Tutorials, Abstimmungen, Live-Events und Downloads ❤❤❤ ❤❤❤ https://www.patreon.com/user?u=5322110 ❤❤❤ ❤❤❤ Keinen Bock auf Patreon? ❤❤❤ ❤❤❤ https://www.paypal.me/TheMorpheus ❤❤❤ 🌍 Website 🌍 https://the-morpheus.de ¯\_(ツ)_/¯ Tritt der Community bei ¯\_(ツ)_/¯ ** https://discord.gg/BnYZ8XS ** ** https://www.reddit.com/r/TheMorpheusTuts/ ** ( ͡° ͜ʖ ͡°) Mehr News? Mehr Code? ℱ https://www.facebook.com/themorpheustutorials 🐦 https://twitter.com/TheMorpheusTuts 🐙 https://github.com/TheMorpheus407/Tutorials Du bestellst bei Amazon? Bestell über mich, kostet dich null und du hilfst mir »-(¯`·.·´¯)-» http://amzn.to/2slBSgH Videowünsche? 🎁 https://docs.google.com/spreadsheets/d/1YPv8fFJOMRyyhUggK8phrx01OoYXZEovwDLdU4D4nkk/edit#gid=0 Fragen? Feedback? Schreib mir! ✉ https://www.patreon.com/user?u=5322110 ✉ https://www.facebook.com/themorpheustutorials ✉ https://discord.gg/BnYZ8XS ✉ [email protected] oder schreib einfach ein Kommentar :)
MIME sniffing (Explained by Example)
 
10:42
Any content served through HTTP “should” include meta data about its type. This is so the browser/client knows what to do with the content it receives. For example, if the content type header is an image the browser will preview it, if it is HTML it will render the markup and execute any javascript code. Content type however is optional and web masters sometimes don’t set it, which leave the browsers wondering about the content type it is consuming. So browsers had to implement parsing and “sniffing” techniques to detect the type of content when a content type header was not served. However, this caused security problems and attacks that we explain in this video! So to prevent sniffing, web servers can return X-Content-Type-Options: nosniff which opts out browsers from sniffing the content. Media type: https://en.wikipedia.org/wiki/Media_type#Common_examples Cheers! Hussein Nasser
Views: 489 IGeometry
Introduction to Frame-busting, X-Frame-Options HTTP Header and Click-Jacking
 
03:50
Author: Jeremy Druin Twitter: @webpwnized Thank you for watching. Please support this channel. Up vote, subscribe or even donate by clicking "Support" at https://www.youtube.com/user/webpwnized! Description: Using Mutillidae, we contrast JavaScript frame busting code and the X-FRAME-OPTIONS header. The two methods are compared on a site being framed. The site is framed inside of an iframe tag and the two methods prevent the site from appearing in the iframe. These two methods are useful in helping with cross site framing and click-jacking. Mutillidae is a free web application with vulnerabilities added on purpose to give security enthusiast and developers an application to practice various attacks and defenses. It is a free download on Sourceforge. Updates on Mutillidae are tweeted at @webpwnized.
Views: 20366 webpwnized
Server einrichten - X-Frame-Options bei nginx gegen Clickjacking
 
04:54
In diesem Tutorial schauen wir uns X-Frame-Options an, die gegen Clickjacking helfen können. ACHTUNG: HK-HOSTING EXISTIERT NICHT MEHR! Die Techniken ab Video 5 sind allerdings immer noch genauso gültig wie immer. Bei Fragen einfach schreiben. ❤❤❤ Früherer Zugang zu Tutorials, Abstimmungen, Live-Events und Downloads ❤❤❤ ❤❤❤ https://www.patreon.com/user?u=5322110 ❤❤❤ ❤❤❤ Keinen Bock auf Patreon? ❤❤❤ ❤❤❤ https://www.paypal.me/TheMorpheus ❤❤❤ 🌍 Website 🌍 https://the-morpheus.de ¯\_(ツ)_/¯ Tritt der Community bei ¯\_(ツ)_/¯ ** https://discord.gg/BnYZ8XS ** ** https://www.reddit.com/r/TheMorpheusTuts/ ** ( ͡° ͜ʖ ͡°) Mehr News? Mehr Code? ℱ https://www.facebook.com/themorpheustutorials 🐦 https://twitter.com/TheMorpheusTuts 🐙 https://github.com/TheMorpheus407/Tutorials Du bestellst bei Amazon? Bestell über mich, kostet dich null und du hilfst mir »-(¯`·.·´¯)-» http://amzn.to/2slBSgH Videowünsche? 🎁 https://docs.google.com/spreadsheets/d/1YPv8fFJOMRyyhUggK8phrx01OoYXZEovwDLdU4D4nkk/edit#gid=0 Fragen? Feedback? Schreib mir! ✉ https://www.patreon.com/user?u=5322110 ✉ https://www.facebook.com/themorpheustutorials ✉ https://discord.gg/BnYZ8XS ✉ [email protected] oder schreib einfach ein Kommentar :)
OWASP DevSlop E02 - Security Headers!
 
56:35
Franziska Bühler and Tanya Janca add security headers to their website, DevSlop.co and continue their DevSecOps learning journey. https://www.owasp.org/index.php/OWASP_DevSlop_Project Security Headers Used: x-frame-options: SAMEORIGIN X-Content-Type-Options: nosniff Referrer-Policy: strict-origin-when-cross-origin Websites Shown: https://securityheaders.com/ https://www.hardenize.com/
Views: 355 OWASP DevSlop
Server einrichten - X-XSS-Protection bei nginx
 
03:34
In diesem Tutorial schauen wir uns den X-XSS-Protection-header an. ACHTUNG: HK-HOSTING EXISTIERT NICHT MEHR! Die Techniken ab Video 5 sind allerdings immer noch genauso gültig wie immer. Bei Fragen einfach schreiben. ❤❤❤ Früherer Zugang zu Tutorials, Abstimmungen, Live-Events und Downloads ❤❤❤ ❤❤❤ https://www.patreon.com/user?u=5322110 ❤❤❤ ❤❤❤ Keinen Bock auf Patreon? ❤❤❤ ❤❤❤ https://www.paypal.me/TheMorpheus ❤❤❤ 🌍 Website 🌍 https://the-morpheus.de ¯\_(ツ)_/¯ Tritt der Community bei ¯\_(ツ)_/¯ ** https://discord.gg/BnYZ8XS ** ** https://www.reddit.com/r/TheMorpheusTuts/ ** ( ͡° ͜ʖ ͡°) Mehr News? Mehr Code? ℱ https://www.facebook.com/themorpheustutorials 🐦 https://twitter.com/TheMorpheusTuts 🐙 https://github.com/TheMorpheus407/Tutorials Du bestellst bei Amazon? Bestell über mich, kostet dich null und du hilfst mir »-(¯`·.·´¯)-» http://amzn.to/2slBSgH Videowünsche? 🎁 https://docs.google.com/spreadsheets/d/1YPv8fFJOMRyyhUggK8phrx01OoYXZEovwDLdU4D4nkk/edit#gid=0 Fragen? Feedback? Schreib mir! ✉ https://www.patreon.com/user?u=5322110 ✉ https://www.facebook.com/themorpheustutorials ✉ https://discord.gg/BnYZ8XS ✉ [email protected] oder schreib einfach ein Kommentar :)
NGINX - X Real IP and Proxy Host Header Configuration
 
17:33
Configure X Real IP and Proxy Host Header in Nginx
Views: 2418 Learning Center
Server einrichten - Referrer Policy bei nginx
 
08:31
In diesem Tutorial schauen wir uns Referrer Policies etwas genauer ansehen. ACHTUNG: HK-HOSTING EXISTIERT NICHT MEHR! Die Techniken ab Video 5 sind allerdings immer noch genauso gültig wie immer. Bei Fragen einfach schreiben. ❤❤❤ Früherer Zugang zu Tutorials, Abstimmungen, Live-Events und Downloads ❤❤❤ ❤❤❤ https://www.patreon.com/user?u=5322110 ❤❤❤ ❤❤❤ Keinen Bock auf Patreon? ❤❤❤ ❤❤❤ https://www.paypal.me/TheMorpheus ❤❤❤ 🌍 Website 🌍 https://the-morpheus.de ¯\_(ツ)_/¯ Tritt der Community bei ¯\_(ツ)_/¯ ** https://discord.gg/BnYZ8XS ** ** https://www.reddit.com/r/TheMorpheusTuts/ ** ( ͡° ͜ʖ ͡°) Mehr News? Mehr Code? ℱ https://www.facebook.com/themorpheustutorials 🐦 https://twitter.com/TheMorpheusTuts 🐙 https://github.com/TheMorpheus407/Tutorials Du bestellst bei Amazon? Bestell über mich, kostet dich null und du hilfst mir »-(¯`·.·´¯)-» http://amzn.to/2slBSgH Videowünsche? 🎁 https://docs.google.com/spreadsheets/d/1YPv8fFJOMRyyhUggK8phrx01OoYXZEovwDLdU4D4nkk/edit#gid=0 Fragen? Feedback? Schreib mir! ✉ https://www.patreon.com/user?u=5322110 ✉ https://www.facebook.com/themorpheustutorials ✉ https://discord.gg/BnYZ8XS ✉ [email protected] oder schreib einfach ein Kommentar :)
Nginx - Mime Types Introduction
 
12:29
MIME (Multi-purpose Internet Mail Extensions) Types Introduction
Views: 1412 Learning Center
How To Secure Nginx with Let's Encrypt on Ubuntu 16.04
 
05:41
Let’s Encrypt is a new Certificate Authority. It’s free, automated, and open, thereby enabling encrypted HTTPS on web servers. It simplifies the process by providing a software client, letsencrypt, that attempts to automate most (if not all) of the required steps. You must own or control the registered domain name that you wish to use the certificate with and you need to have Nginx installed to. Commands: sudo apt-get update sudo apt-get -y install git sudo git clone https://github.com/letsencrypt/letsencrypt /opt/letsencrypt sudo nano /etc/nginx/sites-available/default -------- location ~ /.well-known { allow all; } -------- sudo nginx -t sudo systemctl reload nginx cd /opt/letsencrypt ./letsencrypt-auto certonly -a webroot --webroot-path=/var/www/html -d nipone.com -d www.nipone.com sudo ls -l /etc/letsencrypt/live/your_domain_name sudo openssl dhparam -out /etc/ssl/certs/dhparam.pem 2048 sudo nano /etc/nginx/snippets/ssl-example.com.conf --------------- ssl_certificate /etc/letsencrypt/live/example.com/fullchain.pem; ssl_certificate_key /etc/letsencrypt/live/example.com/privkey.pem; --------------- sudo nano /etc/nginx/snippets/ssl-params.conf --------------- # from https://cipherli.st/ # and https://raymii.org/s/tutorials/Strong_SSL_Security_On_nginx.html ssl_protocols TLSv1 TLSv1.1 TLSv1.2; ssl_prefer_server_ciphers on; ssl_ciphers "EECDH+AESGCM:EDH+AESGCM:AES256+EECDH:AES256+EDH"; ssl_ecdh_curve secp384r1; ssl_session_cache shared:SSL:10m; ssl_session_tickets off; ssl_stapling on; ssl_stapling_verify on; resolver 8.8.8.8 8.8.4.4 valid=300s; resolver_timeout 5s; add_header Strict-Transport-Security "max-age=63072000; includeSubdomains; preload"; add_header X-Frame-Options DENY; add_header X-Content-Type-Options nosniff; ssl_dhparam /etc/ssl/certs/dhparam.pem; ------------- sudo cp /etc/nginx/sites-available/default /etc/nginx/sites-available/default.bak sudo nano /etc/nginx/sites-available/default ------------ server { listen 80 default_server; listen [::]:80 default_server; server_name example.com www.example.com; return 301 https://$server_name$request_uri; } server { # SSL configuration listen 443 ssl http2 default_server; listen [::]:443 ssl http2 default_server; include snippets/ssl-example.com.conf; include snippets/ssl-params.conf; ------------- sudo systemctl restart nginx ============== In a web browser: https://www.ssllabs.com/ssltest/analyze.html?d=example.com ============== /opt/letsencrypt/letsencrypt-auto renew sudo crontab -e -------------Here you have Brackets please don't just copy paste you must replace those big brackets with normal one ---------------- 30 2 * * 1 /opt/letsencrypt/letsencrypt-auto renew >> /var/log/le-renew.log 35 2 * * 1 /bin/systemctl reload nginx ------------- cd /opt/letsencrypt sudo git pull _____________________________________ Music by Joakim Karud https://soundcloud.com/joakimkarud You can always Deploy an SSD cloud server in 55 seconds with Digitalocean. Anyone how use this link will receive $10 in hosting credit immediately after unlocking their account by adding a valid payment method. Sign Up with this link https://m.do.co/c/7b9082af029f
Views: 3067 NixInPix
Server einrichten - HSTS HTTP Strict Transport Security für Nginx
 
05:23
In diesem Tutorial gehen wir einen Sicherheitsheader für eure Website an. ACHTUNG: HK-HOSTING EXISTIERT NICHT MEHR! Die Techniken ab Video 5 sind allerdings immer noch genauso gültig wie immer. Bei Fragen einfach schreiben. ❤❤❤ Früherer Zugang zu Tutorials, Abstimmungen, Live-Events und Downloads ❤❤❤ ❤❤❤ https://www.patreon.com/user?u=5322110 ❤❤❤ ❤❤❤ Keinen Bock auf Patreon? ❤❤❤ ❤❤❤ https://www.paypal.me/TheMorpheus ❤❤❤ 🌍 Website 🌍 https://the-morpheus.de ¯\_(ツ)_/¯ Tritt der Community bei ¯\_(ツ)_/¯ ** https://discord.gg/BnYZ8XS ** ** https://www.reddit.com/r/TheMorpheusTuts/ ** ( ͡° ͜ʖ ͡°) Mehr News? Mehr Code? ℱ https://www.facebook.com/themorpheustutorials 🐦 https://twitter.com/TheMorpheusTuts 🐙 https://github.com/TheMorpheus407/Tutorials Du bestellst bei Amazon? Bestell über mich, kostet dich null und du hilfst mir »-(¯`·.·´¯)-» http://amzn.to/2slBSgH Videowünsche? 🎁 https://docs.google.com/spreadsheets/d/1YPv8fFJOMRyyhUggK8phrx01OoYXZEovwDLdU4D4nkk/edit#gid=0 Fragen? Feedback? Schreib mir! ✉ https://www.patreon.com/user?u=5322110 ✉ https://www.facebook.com/themorpheustutorials ✉ https://discord.gg/BnYZ8XS ✉ [email protected] oder schreib einfach ein Kommentar :)
[Nginx] 2.how to install Nginx on ubuntu 18.04
 
08:13
Nginx product releases are of two types: namely, stable (even version numbers) and mainline or development (odd version numbers). The “stable” versions are tried and tested versions. It consists of major bug fixes but no new features are added in the stable version. The “mainline” version includes new features and bug fixes and usually is good for testing future versions of the product. In our examples we will be using the stable version but the steps to implement and configure mainline version is the same. 1.Open terminal window and open the sources.list file using the command sudo nano /etc/apt/sources.list 2.You can add the Nginx repository links at the bottom of the file. Scroll down to the very bottom of the file and add the two lines below : deb http://nginx.org/packages/ubuntu/ bionic nginx deb-src http://nginx.org/packages/ubuntu/ bionic nginx 3. Save the file. 4. Now you can download the package lists from the repositories and update them with the information for the newest versions of the packages and their dependencies. You can do that by typing the following command: sudo apt-get update 5.You will get the following error regarding the missing signature key. It is happening because gpg is trying to sign the nginx release and check its signature.But the signing key is missing on the server and hence gpg is not able to validate the nginx package: Reading package lists... Done W: GPG error: http://nginx.org trusty Release: The following signatures couldn't be verified because the public key is not available: NO_PUBKEY ABF5BD827BD9BF62 6. Download and add the nginx signature key using the command below: # wget http://nginx.org/keys/nginx_signing.key # sudo apt-key add nginx_signing.key 7.Now try re-synchronizing the package index from the sources: #sudo apt-get update 8.Now that the package list is updated and indexed, you can install Nginx: # sudo apt-get install nginx 9. You can verify Nginx installed the version: # nginx –v Nginx Folder Structure It is important to understand how the Package Manager-based Nginx installation folder structure looks.It will help you to locate the configuration files if you want to make any configuration changes such as changing the user account under which Nginx process executes, enables, or disables mime types for your website; modify FastCGI execution parameters; identify the default document root and error logs directory;or understand where the error logs files and Nginx executable are . •You can get the complete list of all Nginx configuration details and its version by using the – V command option with nginx . Here is a sample output of the command: # nginx –V nginx version: nginx/1.8.0 built by gcc 4.8.2 20140120 (Red Hat 4.8.2-16) (GCC) built with OpenSSL 1.0.1e-fips 11 Feb 2013 TLS SNI support enabled configure arguments: --prefix=/etc/nginx --sbin-path=/usr/sbin/nginx --conf-path=/etc/nginx/nginx.conf --error-log-path=/var/log/nginx/error.log --http-log-path=/var/log/nginx/access.log --pid-path=/var/run/nginx.pid ... output trimmed ... The Package Manager-based installation installs Nginx under /etc/nginx directory. It installs all necessary configuration files like nginx.conf file , which has the web server configuration details. It has a mine.types and fastcgi_params file that contains all the mime types that are enabled on the web server and fastcgi configuration details. All these default configurations enable the Nginx server to start: # ls –F /etc/nginx/ conf.d/ koi-utf fastcgi_params koi-win mime.types nginx.conf scgi_params uwsgi_params win-utf •The Nginx executable nginx is located in the system executable directory /usr/sbin/nginx . Since it is executing using the root user, you will need to be a root user or need to do su or sudo to start or stop the process: # ls -l /usr/sbin/nginx -rwxr-xr-x. 1 root root 890992 Apr 21 21:06 /usr/sbin/nginx •By default, the document root directory is located at /usr/share/nginx/html/ . It consists of a sample index.html and 50x.html file. You can deploy your application in the same document root directory and Nginx will serve the content: # ls /usr/share/nginx/html/ 50x.html index.html • The default error files and HTTP logfiles are located at /var/log/nginx/ . By default, there are two files: access. log and error. log . You will have to implement some sort of log file rotation mechanism such that your logfiles don’t grow up too large. You will learn more about these files and its configuration details in chapter 10 . • Try Lynx to browse to the http://localhost and you should be presented with the default index page. (If you get an alert saying Unable to connect to remote host , simply start the Nginx server using systemctl start nginx ) : # lynx http://localhost #linuxubuntu #ubuntu #nginx
Expect Header XSS
 
03:12
Hello guys. We are the hacking monks. Here is our blog – http://www.hackingmonks.net/p/home.html Here is our Facebook Page - https://www.facebook.com/Hacking-Monks-1589849474562976/?ref=settings
Views: 1841 Hacking Monks
Ubuntu Rtmp Nginx Server install part 1
 
05:01
Installing Nginx and Nginx-RTMP Install the tools required to compile Nginx and Nginx-RTMP from source. sudo apt-get install build-essential libpcre3 libpcre3-dev libssl-dev Make a working directory and switch to it. mkdir ~/working cd ~/working Download the Nginx and Nginx-RTMP source. wget http://nginx.org/download/nginx-1.7.5.tar.gz wget https://github.com/arut/nginx-rtmp-module/archive/master.zip Install the Unzip package. sudo apt-get install unzip Extract the Nginx and Nginx-RTMP source. tar -zxvf nginx-1.7.5.tar.gz unzip master.zip Switch to the Nginx directory. cd nginx-1.7.5 Add modules that Nginx will be compiled with. Nginx-RTMP is included. ./configure --with-http_ssl_module --add-module=../nginx-rtmp-module-master Compile and install Nginx with Nginx-RTMP. make sudo make install Install the Nginx init scripts. sudo wget https://raw.github.com/JasonGiedymin/nginx-init-ubuntu/master/nginx -O /etc/init.d/nginx sudo chmod +x /etc/init.d/nginx sudo update-rc.d nginx defaults Start and stop Nginx to generate configuration files. sudo service nginx start sudo service nginx stop Installing FFmpeg Add the FFmpeg PPA. sudo apt-get install software-properties-common sudo add-apt-repository ppa:kirillshkrogalev/ffmpeg-next Update the package lists. sudo apt-get update Install FFmpeg. sudo apt-get install ffmpeg Note: The apt-add-repository command may not be installed in some cases. To install it run sudo apt-get install software-properties-common. Configuring Nginx-RTMP and FFmpeg Open the Nginx configuration file. sudo nano /usr/local/nginx/conf/nginx.conf worker_processes auto; events { worker_connections 1024; } # RTMP configuration rtmp { server { listen 1935; # Listen on standard RTMP port chunk_size 4000; application show { live on; # Turn on HLS hls on; hls_path /mnt/hls/; hls_fragment 3; hls_playlist_length 60; # disable consuming the stream from nginx as rtmp deny play all; } } } http { sendfile off; tcp_nopush on; directio 512; default_type application/octet-stream; server { listen 8080; location / { # Disable cache add_header 'Cache-Control' 'no-cache'; # CORS setup add_header 'Access-Control-Allow-Origin' '*' always; add_header 'Access-Control-Expose-Headers' 'Content-Length'; # allow CORS preflight requests if ($request_method = 'OPTIONS') { add_header 'Access-Control-Allow-Origin' '*'; add_header 'Access-Control-Max-Age' 1728000; add_header 'Content-Type' 'text/plain charset=UTF-8'; add_header 'Content-Length' 0; return 204; } types { application/dash+xml mpd; application/vnd.apple.mpegurl m3u8; video/mp2t ts; } root /mnt/; } } }
Views: 1379 Magic Koala
04  Cross site Scripting XSS 11  Browser XSS Protection
 
04:02
Browser XSS Protection
Views: 331 CarAni Studio
How to Set up Basic HTTP Authentication on nginx
 
02:43
Set up Basic HTTP Authentication on nginx
Views: 13 P zodiac
Secure Nginx with Free Let’s Encrypt SSL Certificate on Ubuntu 16 Xenial Xerus
 
06:19
in This Tutorial you will learn How To Secure Nginx web server with Free Let’s Encrypt SSL Certificate on Ubuntu 16 04 Xenial Xerus Let’s Encrypt is a new non-profit Certificate Authority (CA) sponsored and founded by industry advocates; such as, the Electronic Frontier Foundation (EFF), Mozilla, and the Internet Security Research Group (ISRG). Let’s Encrypt will be launching very soon and will be offering free SSL certificates SSL certificates are used within web servers to encrypt the traffic between the server and client, providing extra security for users accessing your application. Let’s Encrypt provides an easy way to obtain and install trusted certificates for free. sudo apt-get install git bc && sudo git clone https://github.com/letsencrypt/letsencrypt /opt/letsencrypt gedit /etc/nginx/sites-available/quicknotepad.club location ~ /\.well-known { allow all; } sudo nginx -t sudo service nginx reload Generate an SSL Certificate:- cd /opt/letsencrypt ./letsencrypt-auto certonly -a webroot --webroot-path=/var/www/quicknotepad.club/html -d www.quicknotepad.club Change webroot-path to your site’s document root path- Change “www.quicknotepad.club” to your own domain name - sudo openssl dhparam -out /etc/ssl/certs/dhparam.pem 2048 gedit /etc/nginx/snippets/ssl-quicknotepad.club.conf ssl_certificate /etc/letsencrypt/live/www.quicknotepad.club/fullchain.pem; ssl_certificate_key /etc/letsencrypt/live/www.quicknotepad.club/privkey.pem; gedit /etc/nginx/snippets/ssl-params.conf # from https://cipherli.st/ # and https://raymii.org/s/tutorials/Strong_SSL_Security_On_nginx.html ssl_protocols TLSv1 TLSv1.1 TLSv1.2; ssl_prefer_server_ciphers on; ssl_ciphers "EECDH+AESGCM:EDH+AESGCM:AES256+EECDH:AES256+EDH"; ssl_ecdh_curve secp384r1; ssl_session_cache shared:SSL:10m; ssl_session_tickets off; ssl_stapling on; ssl_stapling_verify on; resolver 8.8.8.8 8.8.4.4 valid=300s; resolver_timeout 5s; # Disable preloading HSTS for now. You can use the commented out header line that includes # the "preload" directive if you understand the implications. #add_header Strict-Transport-Security "max-age=63072000; includeSubdomains; preload"; add_header Strict-Transport-Security "max-age=63072000; includeSubdomains"; add_header X-Frame-Options DENY; add_header X-Content-Type-Options nosniff; ssl_dhparam /etc/ssl/certs/dhparam.pem; sudo cp /etc/nginx/sites-available/quicknotepad.club /etc/nginx/sites-available/default.bak gedit /etc/nginx/sites-available/www.quicknotepad.club return 301 https://$server_name$request_uri; server { # SSL configuration listen 443 ssl http2 ; listen [::]:443 ssl http2 ; include snippets/ssl-quicknotepad.club.conf; include snippets/ssl-params.conf; } nginx -t && sudo nginx -s reload
Ubuntu Rtmp Nginx Server install part 3
 
05:01
Installing Nginx and Nginx-RTMP Install the tools required to compile Nginx and Nginx-RTMP from source. sudo apt-get install build-essential libpcre3 libpcre3-dev libssl-dev Make a working directory and switch to it. mkdir ~/working cd ~/working Download the Nginx and Nginx-RTMP source. wget http://nginx.org/download/nginx-1.7.5.tar.gz wget https://github.com/arut/nginx-rtmp-module/archive/master.zip Install the Unzip package. sudo apt-get install unzip Extract the Nginx and Nginx-RTMP source. tar -zxvf nginx-1.7.5.tar.gz unzip master.zip Switch to the Nginx directory. cd nginx-1.7.5 Add modules that Nginx will be compiled with. Nginx-RTMP is included. ./configure --with-http_ssl_module --add-module=../nginx-rtmp-module-master Compile and install Nginx with Nginx-RTMP. make sudo make install Install the Nginx init scripts. sudo wget https://raw.github.com/JasonGiedymin/nginx-init-ubuntu/master/nginx -O /etc/init.d/nginx sudo chmod +x /etc/init.d/nginx sudo update-rc.d nginx defaults Start and stop Nginx to generate configuration files. sudo service nginx start sudo service nginx stop Installing FFmpeg Add the FFmpeg PPA. sudo apt-get install software-properties-common sudo add-apt-repository ppa:kirillshkrogalev/ffmpeg-next Update the package lists. sudo apt-get update Install FFmpeg. sudo apt-get install ffmpeg Note: The apt-add-repository command may not be installed in some cases. To install it run sudo apt-get install software-properties-common. Configuring Nginx-RTMP and FFmpeg Open the Nginx configuration file. sudo nano /usr/local/nginx/conf/nginx.conf worker_processes auto; events { worker_connections 1024; } # RTMP configuration rtmp { server { listen 1935; # Listen on standard RTMP port chunk_size 4000; application show { live on; # Turn on HLS hls on; hls_path /mnt/hls/; hls_fragment 3; hls_playlist_length 60; # disable consuming the stream from nginx as rtmp deny play all; } } } http { sendfile off; tcp_nopush on; directio 512; default_type application/octet-stream; server { listen 8080; location / { # Disable cache add_header 'Cache-Control' 'no-cache'; # CORS setup add_header 'Access-Control-Allow-Origin' '*' always; add_header 'Access-Control-Expose-Headers' 'Content-Length'; # allow CORS preflight requests if ($request_method = 'OPTIONS') { add_header 'Access-Control-Allow-Origin' '*'; add_header 'Access-Control-Max-Age' 1728000; add_header 'Content-Type' 'text/plain charset=UTF-8'; add_header 'Content-Length' 0; return 204; } types { application/dash+xml mpd; application/vnd.apple.mpegurl m3u8; video/mp2t ts; } root /mnt/; } } }
Views: 556 Magic Koala
Ubuntu Rtmp Nginx Server install part 4
 
01:38
Installing Nginx and Nginx-RTMP Install the tools required to compile Nginx and Nginx-RTMP from source. sudo apt-get install build-essential libpcre3 libpcre3-dev libssl-dev Make a working directory and switch to it. mkdir ~/working cd ~/working Download the Nginx and Nginx-RTMP source. wget http://nginx.org/download/nginx-1.7.5.tar.gz wget https://github.com/arut/nginx-rtmp-module/archive/master.zip Install the Unzip package. sudo apt-get install unzip Extract the Nginx and Nginx-RTMP source. tar -zxvf nginx-1.7.5.tar.gz unzip master.zip Switch to the Nginx directory. cd nginx-1.7.5 Add modules that Nginx will be compiled with. Nginx-RTMP is included. ./configure --with-http_ssl_module --add-module=../nginx-rtmp-module-master Compile and install Nginx with Nginx-RTMP. make sudo make install Install the Nginx init scripts. sudo wget https://raw.github.com/JasonGiedymin/nginx-init-ubuntu/master/nginx -O /etc/init.d/nginx sudo chmod +x /etc/init.d/nginx sudo update-rc.d nginx defaults Start and stop Nginx to generate configuration files. sudo service nginx start sudo service nginx stop Installing FFmpeg Add the FFmpeg PPA. sudo apt-get install software-properties-common sudo add-apt-repository ppa:kirillshkrogalev/ffmpeg-next Update the package lists. sudo apt-get update Install FFmpeg. sudo apt-get install ffmpeg Note: The apt-add-repository command may not be installed in some cases. To install it run sudo apt-get install software-properties-common. Configuring Nginx-RTMP and FFmpeg Open the Nginx configuration file. sudo nano /usr/local/nginx/conf/nginx.conf worker_processes auto; events { worker_connections 1024; } # RTMP configuration rtmp { server { listen 1935; # Listen on standard RTMP port chunk_size 4000; application show { live on; # Turn on HLS hls on; hls_path /mnt/hls/; hls_fragment 3; hls_playlist_length 60; # disable consuming the stream from nginx as rtmp deny play all; } } } http { sendfile off; tcp_nopush on; directio 512; default_type application/octet-stream; server { listen 8080; location / { # Disable cache add_header 'Cache-Control' 'no-cache'; # CORS setup add_header 'Access-Control-Allow-Origin' '*' always; add_header 'Access-Control-Expose-Headers' 'Content-Length'; # allow CORS preflight requests if ($request_method = 'OPTIONS') { add_header 'Access-Control-Allow-Origin' '*'; add_header 'Access-Control-Max-Age' 1728000; add_header 'Content-Type' 'text/plain charset=UTF-8'; add_header 'Content-Length' 0; return 204; } types { application/dash+xml mpd; application/vnd.apple.mpegurl m3u8; video/mp2t ts; } root /mnt/; } } }
Views: 360 Magic Koala
Ubuntu Rtmp Nginx Server install part 2
 
05:01
Installing Nginx and Nginx-RTMP Install the tools required to compile Nginx and Nginx-RTMP from source. sudo apt-get install build-essential libpcre3 libpcre3-dev libssl-dev Make a working directory and switch to it. mkdir ~/working cd ~/working Download the Nginx and Nginx-RTMP source. wget http://nginx.org/download/nginx-1.7.5.tar.gz wget https://github.com/arut/nginx-rtmp-module/archive/master.zip Install the Unzip package. sudo apt-get install unzip Extract the Nginx and Nginx-RTMP source. tar -zxvf nginx-1.7.5.tar.gz unzip master.zip Switch to the Nginx directory. cd nginx-1.7.5 Add modules that Nginx will be compiled with. Nginx-RTMP is included. ./configure --with-http_ssl_module --add-module=../nginx-rtmp-module-master Compile and install Nginx with Nginx-RTMP. make sudo make install Install the Nginx init scripts. sudo wget https://raw.github.com/JasonGiedymin/nginx-init-ubuntu/master/nginx -O /etc/init.d/nginx sudo chmod +x /etc/init.d/nginx sudo update-rc.d nginx defaults Start and stop Nginx to generate configuration files. sudo service nginx start sudo service nginx stop Installing FFmpeg Add the FFmpeg PPA. sudo apt-get install software-properties-common sudo add-apt-repository ppa:kirillshkrogalev/ffmpeg-next Update the package lists. sudo apt-get update Install FFmpeg. sudo apt-get install ffmpeg Note: The apt-add-repository command may not be installed in some cases. To install it run sudo apt-get install software-properties-common. Configuring Nginx-RTMP and FFmpeg Open the Nginx configuration file. sudo nano /usr/local/nginx/conf/nginx.conf worker_processes auto; events { worker_connections 1024; } # RTMP configuration rtmp { server { listen 1935; # Listen on standard RTMP port chunk_size 4000; application show { live on; # Turn on HLS hls on; hls_path /mnt/hls/; hls_fragment 3; hls_playlist_length 60; # disable consuming the stream from nginx as rtmp deny play all; } } } http { sendfile off; tcp_nopush on; directio 512; default_type application/octet-stream; server { listen 8080; location / { # Disable cache add_header 'Cache-Control' 'no-cache'; # CORS setup add_header 'Access-Control-Allow-Origin' '*' always; add_header 'Access-Control-Expose-Headers' 'Content-Length'; # allow CORS preflight requests if ($request_method = 'OPTIONS') { add_header 'Access-Control-Allow-Origin' '*'; add_header 'Access-Control-Max-Age' 1728000; add_header 'Content-Type' 'text/plain charset=UTF-8'; add_header 'Content-Length' 0; return 204; } types { application/dash+xml mpd; application/vnd.apple.mpegurl m3u8; video/mp2t ts; } root /mnt/; } } }
Views: 443 Magic Koala
Content Security Policy meta tags
 
08:56
To improve the security of your websites and hybrid mobile apps you should always include a content-security-policy meta tag. This video covers the different possible values that you can include as the content of your meta tag. Code GIST: https://gist.github.com/prof3ssorSt3v3/a28a0b105225954b0505b231128c5b84
Views: 1890 Steve Griffith
X frame options
 
00:54
Views: 761 Abe Nunez
Hide Server Signature of Nginx Web Server on Linux
 
01:13
in This tutorial you will learn How To Hide Server Signature of Nginx Web Server on ubuntu Linux How to Hide Server Signature of Nginx & PHP Version on Linux Distos like Ubuntu, CentOS, RHEL, ArchLinux, OpenSuse, etc. Server Signature is type of foot-printing in which the version number of web server module like Ngnix and PHP are considered as known by attackers for collection of data for foot-printing of servers by using the simple Linux commands or using some tools or some web browsers for hiding the server signature is necessary to remove the information from the sets to secure the web servers from the external attacks.| First verify if server is showing Nginx version or not :- curl -I http://ubuntu.yourdomain.com gedit /etc/nginx/nginx.conf server_tokens off; gedit /etc/php.ini Or gedit /etc/php/7.0/fpm/php.ini expose_php = Off
Prevent Click Jaking Attack of your Apache web server
 
02:29
To remove Click jacking attack There are three settings for X-Frame-Options: 1. SAMEORIGIN: This setting will allow page to be displayed in frame on the same origin as the page itself. 2. DENY: This setting will prevent a page displaying in a frame or iframe. 3. ALLOW-FROM uri: This setting will allow page to be displayed only on the specified origin. Implement in Apache, IBM HTTP Server Add following line in Apache Web Server’s httpd.conf file Header always append X-Frame-Options SAMEORIGIN OR Implement in shared web hosting If your website is hosted on shared web hosting then you won’t have permission to modify httpd.conf. However, you can implement this by adding following line in .htaccess file. Header always append X-Frame-Options SAMEORIGIN Now you may check using https://tools.geekflare.com/web-tools/x-frame-options-test Success.
Views: 1788 Web illusion
GPN18 - HTTP Security & Headers
 
54:08
https://media.ccc.de/v/gpn18-141-http-security-headers Du kennst observatory.mozilla.org oder securityheaders noch nicht? Dann bist du hier richtig; es gibt einen aktuellen Überblick über die Möglichkeiten eure Anwendungen ein stück sicherer zu machen und zu halten... Ives "dalini" Laaf
Views: 2251 media.ccc.de
Finding HTTP Headers For HTTP Post
 
01:15
Learn how to use the HTTP post method to post contact forms and more without running a browser at all! In this video I use: https://addons.mozilla.org/en-us/firefox/addon/live-http-headers/ to help me find the details on the post. Once you find the parameters you can do it over and over again with sockets. In my next video I will show you how to submit the data using the parameters found in this video. HTTP headers http chrome example firefox case sensitive accept content-type cache-control no cache referer authentication addon apache accept-language json asp.net android access-control-allow-origin and caching browser basic type body base64 best practices boundary bad request basics check cookie c# connection close charset date download file disable header dnt delimiter filename dump data gzip expires encoding etag extension enable content expiration error utf-8 encrypted over ssl for dummies format static resources force ie get google post compression geolocation godaddy generator host have already been sent html html5 htaccess p3p https how to use set in javascript php iphone iis internet explorer curl image safari java jquery jsp jersey jpg js jax-ws keep-alive timeout key value kerberos live keyboard shortcut koc fetching keep alive what kind of is passed via response list location last modified length link locale limit lookup lowercase max multiple values mime max-age method mobile device detection mozilla mac address nginx naming convention .net new line name never noindex nodejs ntlm online origin order options only opera on os oauth headers_out plugin perl proxy python pdf pragma parameters query string quotes quick reference q quoted ¿live qué es http_query raw headers\u003cb\u003e crlf rfc redirect rest rails ruby refresh r n remote_addr separator status code security syntax set-cookie spec risk sniffer tutorial test prevent timestamp timezone tester tab telnet token user agent unicode username password underscore url uri vs vary viewer view version valid characters soap variables cookies wiki wireshark w3schools w3c wcf web config wordpress with firebug windows x prefix xml forwarded x-ua-compatible x_csize 0 xmlhttprequest x-powered-by x-cache xss yoyo youtube yii your do you where put zip zend zend_soap_client zend_http_client client framework
Views: 11766 Patrick Miles
PERFECT LITTLE HOME SERVER [Raspberry Pi 3] PART 4 - Pydio DROPBOX REPLACEMENT
 
30:11
► Follow me on: • Twitter: https://twitter.com/salkohd • Google PLUS: https://goo.gl/OZQPwN • Facebook: https://www.facebook.com/salkohd ► This video explains how to install Pydio on Raspberry Pi running Raspbian Linux. This is the 3rd video from the series, previous videos: - Part 3: https://goo.gl/LP7ts9 - PART 2: https://goo.gl/gJXgX0 - PART 1: https://goo.gl/tFoiWo ► Commands used in video: - Generate the certificate & key pair: sudo openssl req -x509 -nodes -days 365 -newkey rsa:2048 -keyout /etc/ssl/private/nginx-selfsigned.key -out /etc/ssl/certs/nginx-selfsigned.crt - Generate the Diffie-Helman group: openssl dhparam -out /etc/ssl/certs/dhparam.pem 2048 THIS WILL TAKE A LONG TIME! - Uncomment /var/www/html/pydio/conf/bootstrap_conf.php //$AJXP_INISET["session.save_path"] = AJXP_DATA_PATH."/tmp/sessions"; - Add an A record in BIND, pointing to your Raspberry Pi server (remember to use an external IP if you are planning to use Pydio outside your home network) NGINX pydio vhost file: ----------------------------------------------------- server { server_name pydio.salkohd.com; listen 80; rewrite ^ https://$server_name$request_uri? permanent; } server { server_name pydio.salkohd.com; root /var/www/html/pydio; index index.php; listen 443 ssl; keepalive_requests 10; keepalive_timeout 60 60; access_log /var/log/nginx/access_pydio6_log; error_log /var/log/nginx/error_pydio6_log; ssl_certificate /etc/ssl/certs/nginx-selfsigned.crt; ssl_certificate_key /etc/ssl/private/nginx-selfsigned.key; ssl_dhparam /etc/ssl/certs/dhparam.pem; ssl_protocols TLSv1 TLSv1.1 TLSv1.2; ssl_prefer_server_ciphers on; ssl_ciphers "EECDH+AESGCM:EDH+AESGCM:AES256+EECDH:AES256+EDH"; ssl_ecdh_curve secp384r1; ssl_session_cache shared:SSL:10m; ssl_session_tickets off; ssl_stapling on; ssl_stapling_verify on; add_header Strict-Transport-Security "max-age=63072000; includeSubdomains"; add_header X-Frame-Options DENY; add_header X-Content-Type-Options nosniff; client_max_body_size 15M; client_body_buffer_size 128k; rewrite ^/dashboard|^/settings|^/welcome|^/ws- /index.php last; if ( !-e $request_filename ) { # WebDAV Rewrites rewrite ^/shares /dav.php last; # Sync client rewrite ^/api /rest.php last; # External users rewrite ^/user ./index.php?get_action=user_access_point last; # Public shares rewrite ^/data/public/([a-zA-Z0-9_-]+)\.php$ /data/public/share.php?hash=$1?; } rewrite ^/data/public/([a-zA-Z0-9_-]+)--([a-z]+)$ /data/public/share.php?hash=$1&lang=$2?; rewrite ^/data/public/([a-zA-Z0-9_-]+)$ /data/public/share.php?hash=$1?; # Prevent Clickjacking add_header X-Frame-Options "SAMEORIGIN"; # Only allow these request methods and do not accept DELETE, SEARCH and other methods if ( $request_method !~ ^(GET|HEAD|POST|PROPFIND|OPTIONS)$ ) { return 444; } location ~* ^/(?:\.|conf|data/(?:files|personal|logs|plugins|tmp|cache)|plugins/editor.zoho/agent/files) { deny all; } # Enables PHP location ~ \.php$ { # for ^/(index|plugins) request_uri should be changed set $request_url $request_uri; if ( $uri ~ ^/(index|plugins) ) { set $request_url /; } include fastcgi.conf; fastcgi_param REQUEST_URI $request_url; try_files $uri =404; fastcgi_pass unix:/var/run/php5-fpm.sock; } # Enables Caching location ~* \.(ico|css|js)$ { expires 7d; add_header Pragma public; add_header Cache-Control "public, must-revalidate, proxy-revalidate"; } } ----------------------------------------------------- ► MUSIC: Outro Music by Marley & Speo NCS (No Copyright Sounds) https://www.youtube.com/watch?v=AUEdtwct0ac Follow Speo: http://soundcloud.com/speomusic http://facebook.com/speomusic http://twitter.com/speomusic Follow Morley: https://soundcloud.com/romely https://www.youtube.com/user/TheMorleyMusic ► Subscribe for more videos like this!
Views: 3758 Salko
Lua +Nginx on JUG Lodz
 
02:53
Lua +Nginx JUG Lodz 07.03.2018
Views: 20 Paweł Włodarski
Mitigating Cross Site Scripting Attacks with a Content Security Policy
 
18:44
Mitigating Cross-Site Scripting Attacks with a Content Security Policy Abstract: A content security policy (CSP) can help Web application developers and server administrators better control website content and avoid vulnerabilities to cross-site scripting (XSS). In experiments with a prototype website, the authors' CSP implementation successfully mitigated all XSS attack types in four popular browser SIMILAR VIDEOS: https://www.youtube.com/watch?v=AZI6oHAEtU8 https://www.youtube.com/watch?v=o0mT99zKAqA https://www.youtube.com/watch?v=X7jZtTq74WU https://www.youtube.com/watch?v=EO1rgFk07kQ https://www.youtube.com/watch?v=ACtU9aaoh_8 https://www.youtube.com/watch?v=cbZFKV4A0X8 https://www.youtube.com/watch?v=AWcD3pIGJjI https://www.youtube.com/watch?v=0y5w5CbMips https://www.youtube.com/watch?v=rhCtDFPNHCE https://www.youtube.com/watch?v=t41nfgBy8pY https://www.youtube.com/watch?v=LLUlzVlIJOw https://www.youtube.com/watch?v=mSjS4IGyrW0 https://www.youtube.com/watch?v=1TnAqAkxuws https://www.youtube.com/watch?v=nxoUUe8rrtQ https://www.youtube.com/watch?v=XBzwg1EY2SI https://www.youtube.com/watch?v=RRVWWUd9NLk https://www.youtube.com/watch?v=Es0eHDHksiM https://www.youtube.com/watch?v=x5CAAPGuo3g https://www.youtube.com/watch?v=sQKIpfEpQmo https://www.youtube.com/watch?v=hcmrJkwn1T4 https://www.youtube.com/watch?v=cNw3u68a424 https://www.youtube.com/watch?v=6sKfA1vFZBA https://www.youtube.com/watch?v=cFsryGMYxIE For More Videos - https://www.youtube.com/channel/UCR5lsF-lDQu6rVYVJPqNn6Q SOCIAL HANDLES: SCOOP IT- http://www.scoop.it/u/1croreprojects FACEBOOK - https://www.facebook.com/1Croreprojectsieeeprojects/ TWITTER - https://twitter.com/1crore_projects LINKEDIN - https://www.linkedin.com/in/1-crore-projects-ba982a118/ GOOGLE+ - https://plus.google.com/u/0/105783610929019156122 PINTEREST - https://in.pinterest.com/onecroreproject/ BLOG - 1croreprojectz.blogspot.com DOMAIN PROJECTS DOTNET - http://www.1croreprojects.com/dotnet-ieee-project-centers-in-chennai.php JAVA - http://www.1croreprojects.com/java-ieee-projects-chennai.php EMBEDDED - http://www.1croreprojects.com/embedded-systems-ieee-projects-chennai.php MATLAB - http://www.1croreprojects.com/matlab-ieee-projects-chennai.php NS2 - http://www.1croreprojects.com/ns2-ieee-projects-chennai.php VLSI -http://www.1croreprojects.com/vlsi-ieee-projects-chennai.php FOR PROJECTS - http://www.1croreprojects.com/ BUSINESS CONTACT: Email - [email protected] We are always open for all business prospects. You can get in touch which us, using the above mentioned e-mail id and contact number. ABOUT 1CROREPROJECTS: 1Crore Projects is company providing outstanding, cost-effective, effective result authorized on solutions. Our objective is to create solutions that enhance company process and increase come back in most possible time. We started truly to provide solutions to the customers all over the world. We have been effectively in providing solutions for different challenges across a wide range of market and customers propagate across the globe.
Views: 106 1 Crore Projects
CORS access control allow origin [SOLVED]
 
08:42
No access-control-allow-origin-header is present on required resource. Origin is therefore not allowed access Following is the solution to above problem. Copy code given in following link to your Web.Config of your file in System.WebServer tag https://amolwabale.blogspot.in/2017/06/cors-access-control-allow-origin-header.html
Views: 74200 Code Bandit
Fix .exe has stopped working  or windows explorer has stopped working
 
05:43
Solved: ".exe has stopped working" "windows explorer not working" "fix windows explorer" "fix windows explorer has stopped working" " .exe file stopped". In this Video I have two CMD (command prompt) options for solve this problem on windows 7 64 bit and 32 bit User I already made a video for this error you can find out with this link : https://youtu.be/pBRyL0BqKT8 Fix : "internet explorer has stopped working" click this link : https://youtu.be/kvhXPDfb_ds Hope this will work for you DONATE TO DEEZ- PAYPAL DONATE BUTTON DOESN'T SUPPORT IN INDIA, BUT YOU CAN DO BY USING THIS LINK.: https://www.paypal.com/cgi-bin/webscr?cmd=_s-xclick&hosted_button_id=BRZVDCMQNWVH2 Any amount you can give is welcome.. Video Content: option First 1: UnInstall application 2: Open cmd as administrative mode 3: type bcdedit.exe /set nx AlwaysOff (for disable DEP) [ This option may won't work with windows 8,8.1 and 10. some cases 64bit OS also won't work. For that you need to disable Secure Boot Policy ] Check out How to disable Secure Boot Policy in this Link: https://youtu.be/S0sY0DWtRNw 4: Restart the computer . 5: Install the Application 6: Re enable DEP Open cmd and run as Administrator type bcdedit.exe /set nx AlwaysOn Restart . Second Option: May this will work without uninstall your application 1: Run cmd as administrator 2: Type bcdedit /set nx OptOut 3: Restart 4: Open My computer - Right click and Properties - On right side select advanced advanced system settings - On performance section select settings - Data execution prevention - turn on DEP for all programs and services except those i select - Add and choose your application .exe file then open. 5. Restart the computer Also you can do this option with uninstall your application . But you need add the .exe file of that program to DEP before you install . I created this video for educational purpose . Thanks for watch For more Subscribe Copyright Reserved © - 2015-16 All rights to this video is owned DEEZ : www.deezzone.com The video obeys the YouTube Community Guidelines and NO copyright content is present in this video. For Educational Purpose Only. Copyright Disclaimer Under Section 107 of the Copyright Act 1976, allowance is made for -fair use- for purposes such as criticism, comment, news reporting, teaching, scholarship, and research. Fair use is a use permitted by copyright statute that might otherwise be infringing. Non-profit, educational or personal use tips the balance in favour of fair use Copyright Reserved © - 2015-16
Views: 305431 DEE Z
Install and Configure Apache Traffic Server 7.0 as Reverse Proxy on Linux
 
07:13
# Create the compilation environment and install required packages sudo yum groupinstall "Development Tools" -y sudo yum install wget pcre-devel tcl-devel expat-devel openssl-devel libcap-devel hwloc hwloc-devel ncurses-devel libcurl-devel -y # Download trafficserver cd /usr/src sudo wget $url # Verify md5 # https://www.apache.org/dist/trafficserver/ md5sum trafficserver-7.0.0.tar.bz2 sudo tar xjvf trafficserver-7.0.0.tar.bz2 cd trafficserver-7.0.0 # Add group/user to run the service sudo groupadd -g 176 trafficserver sudo useradd -g 176 -u 176 -d /var/empty -s /sbin/nologin trafficserver # Compile trafficserver sudo ./configure --prefix=/opt/ts --with-group=trafficserver --with-user=trafficserver sudo make sudo make install # Create systemd script sudo vi /lib/systemd/system/trafficserver.service #Add [Unit] Description=Apache Traffic Server After=syslog.target network.target [Service] Type=simple ExecStart=/opt/ts/bin/traffic_cop ExecReload=/opt/ts/bin/traffic_line -x [Install] WantedBy=multi-user.target # Reload systemd sudo systemctl daemon-reload # Configure trafficserver cd /opt/ts/etc/trafficserver/ sudo vi records.config # Enable these options CONFIG proxy.config.http.cache.http INT 1 CONFIG proxy.config.reverse_proxy.enabled INT 1 CONFIG proxy.config.url_remap.remap_required INT 1 CONFIG proxy.config.url_remap.pristine_host_hdr INT 1 CONFIG proxy.config.http.server_ports STRING 80 80:ipv6 # Configure trafficserver with the origin server sudo vi remap.config map http://www.frostwolfs.org http://internal.frostwolfs.org # Increase the cache size sudo vi storage.config #Add var/trafficserver 5G # Start the service sudo systemctl start trafficserver # Enable service at boot sudo systemctl enable trafficserver # Configure the firewall sudo firewall-cmd --zone=public --add-port=80/tcp --permanent sudo firewall-cmd --reload # Test from the client
Views: 2257 Alejandro T
nginx_lua (part 1)
 
20:01
Slides: http://www.slideshare.net/ssuserf77241/openresty
Views: 320 Саги Усаги
Web Conference, Webinar and 1-1 Video Chat (AVIDO Web Conference)
 
02:46
AVIDO delivers a truly all-in-one web conferencing solution for all your organization-wide online communication needs. Web conferencing usage can vary widely, depending on business necessities, daily fluctuations in application requirements, and even personal preferences. Using AVIDO as your communication medium offers you easily accessible solutions to any communication challenge -- whenever or wherever they arise. Using AVIDO is easy, fast, and fun. plug-in and with no installation or download, you can be up-and-running in minutes; giving you and your team immediate access to your own online meeting room 24/7 That means you'll have access to AVIDO features such as full-duplex video conferencing, screen and file sharing, chat, session recording and much more. please visit http://www.avidousa.com also http://www.avidousa.com. Company Website: http://www.voiptelprovider.com/main/features/ via remote control. File up loader Type or highlight over your document Zoom in and out No Downloads or Installations The AVIDO client software is designed to work on any computer system that can run Adobe Flash Player®, meaning it will run on Microsoft® Windows®, Apple OS X®, various distributions of Linux® and Sun Solaris™. AVIDO will even run on Windows® PocketPCs for true on the road access. AVIDO was designed with the user in mind. A typical conference organiser can learn the most important features within a few minutes, and 80% of the system within an hour. The key features are prominently displayed, making your first web conference an enjoyable and intuitive experience. For a conference participant/invitee, it is even easier. Joining a meeting or webinar is as easy as watching YouTube®. You simply click the link, wait for the conference to load, sit back and enjoy the show. You don't need to download or install anything. Here are some of the Avido Web Conference Components Ubuntu Ubuntu is a distribution of the Linux Operating system, focused on user friendly Graphical User Interfaces. ubuntu.com ActiveMQ Apache ActiveMQ is an open source enterprise messaging and integration patterns provider. activemq.apache.org Ghostscript Ghostscript is an interpreter for the Post Script language and for PDF. ghostscript.com Grails Grails is an open-source web application framework that leverages the Groovy language and complements Java Web development. grails.org swf Tools SWFTools is a collection of utilities for working with Adobe Flash files (SWF files). swftools.org Asterisk Asterisk is an open source PBX, telephony engine, and telephony applications toolkit. asterisk.org MySQL MySQL is an open source database. mysql.com Red5 Red5 is an Open Source Flash Server written in Java. osflash.org nginx nginx "engine x" is a HTTP server and mail proxy server. nginx.net Asterisk Java The Asterisk-Java package consists of a set of Java classes that allow you to easily build Java applications that interact with an Asterisk PBX Server. asterisk-java.org Xuggler Xuggler is a library for Java or C++ developers that allows you to decode, manipulate, and encode (almost) any type of video file in near real time. xuggle.com Open Office OpenOffice.org is the leading open-source office software suite for word processing, spreadsheets, presentations, graphics, databases and more. http://openoffice.org/ Image Magick Image Magick is a collection of tools designed to view, modify, and manipulate images in nearly 70 different image formats. It also allows you to create images dynamically, making it suitable for Web applications. imagemagick.org Flex SDK lex is a highly productive, open source framework for building and maintaining expressive web applications that deploy consistently on all major browsers, desktops and operating systems. opensource.adobe.com Tomcat Apache Tomcat is an implementation of the Java Servlet and JavaServer Pages technologies. The Java Servlet and JavaServer Pages specifications are developed under the Java Community Process. tomcat.apache.org Alfresco Alfresco Web Content Management (WCM) is the leading open source solution that is: An Open Source, lower cost, and lower risk solution that offers greater control and visibility over current and future costs A full ECM suite providing complete control over any content from within a single integrated platform â€" documents, images, video, audio, etc. A complete collaboration environment for creating, approving and publishing content to the web Built on industry standard technology that is as simple to use as a shared network drive Sakai Sakai AVIDO integrates a Sakai , allowing AVIDO users to easily create, manage and join AVIDO sakaiproject.org RedMine Avido integration for RedMine allows you to create, edit, and manage meetings within the RedMine interface. www.redmine.org All these components and much much more This Video brought you by Smart Voice Network please visit us at http://www.avidousa.com
Views: 1766 LiveGroup Link
Internet Explorer® 8: How to view a website's P3P privacy policy on Windows® 7?
 
02:03
Do you need the steps to view a website's P3P privacy policy in Internet Explorer® 8 on a Windows® 7-based PC? Just call iYogi at 1-877-524-9644 and our tech support team can give you the steps for it. iYogi warrants that the content in this video is provided on an "as is" basis with no express or implied warranties whatsoever. Any reference of any third party logos, brand names, trademarks, services marks, trade names, trade dress and copyrights shall not imply any affiliation to such third parties, unless expressly specified.
Views: 70 How-to Videos
Umbraco 301 Redirects v7.5.0
 
00:53
Umbraco now automatically tracks moved\renamed content pages via the 301 redirect dashboard. Thanks to this episodes' sponsor Tonic: https://hellotonic.com/ Twitter: https://twitter.com/KevinGiszewski Blog: https://kevin.giszewski.com GitHub: https://github.com/kgiszewski
Views: 947 Kevin Giszewski
Drupal 8 Performance, Lesson 2: Caching Basics
 
06:38
Discover more great Drupal training: http://ostraining.com/drupal-training Get 50% off your first month at InMotion Hosting: https://secure1.inmotionhosting.com/cgi-bin/gby/clickthru.cgi?id=ostrainingvideos&page=4 In this video Robert explains Drupal's cache system. The cache stores a copy of requested pages in an easily accessible location. There are several different types of cache on every Drupal site.
Views: 1683 OSTraining
How to Install Joomla Web Server in Virtualbox #Pentesting
 
08:56
How to Install Joomla Web Server in Virtualbox #pentesting Visit Our Website:https://www.dmznetworks.tech Download Joomla Web Server ISO: https://bit.ly/2EwKnIA Joomla! is an award-winning Content Management System (CMS) for building websites as well as a Model-view-controller (MVC) Web Application Development framework. Features include page caching to improve performance, RSS feeds, printable versions of pages, news flashes, blogs, polls, website searching, and language internationalization. Installing the Joomla TurnkeyLinux appliance To start your virtual machine, double click on its name in the virtual machines’ list or select it and click on the Start button: The first time you open a virtual machine, the First Run Wizard dialog shows up. This wizard helps you to install an operating system to your virtual machine. Click Next to go to the Select Installation Media window, where you can select a media source to install an operating system in your virtual machine. In this case you’re going to select the Turnkey Joomla ISO live CD image you downloaded before. Click on the folder icon located at the right-side of the Media Source list box: The Choose a virtual CD/DVD disk file dialog will open up. Use this dialog to locate and select the Joomla Turnkey ISO image your previously downloaded; then click on Open to return to the Select Installation Media dialog and click Next to continue. The Summary window will appear next, showing the media you selected. Click on Finish to exit the First Run Wizard and start your virtual machine. Wait until the TurnkeyLinux boot screen shows up; then make sure the Install to hard disk option is highlighted and hit Enter to proceed (you can also wait until installation begins automatically): Wait until the Debian Installer Live screen appears. Use the keyboard to select the Guided – use the entire disk option and hit Enter to continue: The next screen will ask you if you want to write the changes to disk. Select Yes and hit Enter to continue. The Debian Installer will start installing Ubuntu and the Joomla appliance in your virtual machine. After a while, a screen will appear asking if you want to install the GRUB boot loader to the master boot record. Select Yes and hit Enter to continue. The next screen will tell you that the installation is complete, and will ask if you want to restart your computer (virtual machine). Make sure Yes is selected and hit Enter to continue. Wait until your virtual machine boots up and asks you to type a new password for the root account. Type a secure password and hit Enter to continue. Type the password again and hit Enter to proceed. Now the system will ask for the MySQL server ‘root’ account’s password. Type a password of your choice and hit Enter. Repeat the procedure to confirm the password. Finally, the system will ask you to type a password for the Joomla ‘admin’ account. Choose a secure password, type it and hit Enter. Once again, repeat the procedure to confirm the password. The next step is to write the email address for the Joomla ‘admin’ account. Type a real email address and hit Enter to proceed. Next you’ll see a Link TKLBAM to the Turnkey Hub screen. In this case we’re not going to use the Turnkey Hub (a backup/restore system), so don’t type anything and hit Enter to continue. The next screen that will show up is Security Updates. You can leave the default option (Install) and hit Enter to proceed. (Be patient while the security updates get installed in your virtual machine; sometimes it can take several minutes.) Once the security updates finish installing in your virtual machine, the JOOMLA appliance services screen will pop up, and your virtual machine will be ready to roll: Write down the IP address assigned to your Joomla virtual machine (in the above picture it’s 192.168.1.79, but your IP address may vary). Then, open a web browser and type http://youripaddress (remember to replace youripaddress with the IP address you wrote down) to verify your Joomla virtual machine is working. The next screen should appear in your browser: Support Us: Twitter:https://twitter.com/dmznetworks Tumblr:https://dmznetworks.tumblr.com/ Skyrock:http://dmz-network.skyrock.com/ Blogger:http://www.dmznetworks.tech/ Google+:https://plus.google.com/u/0/110125716327435602216 Reddit:https://www.reddit.com/user/dmz-networks/ Stumble:https://www.stumbleupon.com/stumbler/dnetwork00 Linkedin:https://www.linkedin.com/in/dmz-networks-449b9514a Pinterest:https://www.pinterest.com/dmznetworks/ Facebook:https://www.facebook.com/DMZ-Networ
Views: 136 Armitage Sudo
How to change the cached web page settings for Microsoft Windows Server 2012
 
01:23
Author and talk show host Robert McMillen explains how to change the cached web page settings for Microsoft WWindows Server 2012.
Views: 181 Robert McMillen
Stuck in Traffic - HTTP Public Key Pinning
 
04:02
HTTP Public Key Pinning, an overview and as an example of deprecated security controls.
Views: 745 J Wolfgang Goerlich
Distil Networks' Universal Access Control Lists: Overview & Walkthrough
 
03:00
Use Distil's Universal Access Control List (ACL) to blacklist and whitelist access to your protected web and API domains. Rather than manually tailoring an ACL for each new domain, simply create a universal ACL, configure the access rule(s), and add the domain(s) to the list. For all of your APIs, websites, and web apps, this helps to: • Block all attempts by malicious users • Allow all attempts by approved users In addition to simply tracking by IP address, the Universal ACL lets you globally blacklist or whitelist by: • Organization (Amazon, Rackspace, etc). • Country • HTTP header • User agent • API token • Device ID (Distil-generated) • HTTP referrer The ACL dashboard within the Distil Portal provides all of the necessary tools you’ll need to manage your ACLs with Distil, including: • Search across all of your ACLs for a specific data point, such as an ACL name and rule value. • Delete a single ACL or multiple ACLs directly within the ACL dashboard. • And browse through the pages of your ACL. NOTE: Pagination begins at 11 ACLs. Ready to start? Click Create a New ACL to open a blank ACL. Enter a name for your ACL and click Save Access Control List. The portal will show a confirmation message, and your new ACL will appear on the ACL dashboard. Now that you’ve created an ACL, tailor it with associated rules to blacklist and whitelist access. 1. Click + Create or Upload Rule(s). 2. Select an option from the Rule Type dropdown menu and enter a value in the corresponding field. NOTE: The option you select from the Rule Type dropdown creates a corresponding value. For example, choosing IP Address creates an IP. Addresses field where you can enter a single or multiple IP addresses. Choosing Country creates a Country field where you can enter a country code. 3. Set Access Rights, either Whitelist or Blacklist. 4. In the Notes field, enter any relevant notes about the associate rule. 5. Click Save Rule(s) . Alternatively, you can set multiple rules at a time by uploading a .CSV file. Now that you’ve tailored the ACL with associated rules, assign it to specific paths, including entire domains, specific paths, and API endpoints. 1. Click Add Path. 2. Enter a domain in the Domain field. 3. If adding a specific path, enter the path in the Enter path field. If adding the entire domain, leave the Enter path field blank and select the Include ALL paths checkbox. Keep in mind, setting an associated rule to an associated path overrides any associated rules set for an entire domain. 4. Click Save Path. Now that you’ve created a library of ACLs, each configured with its own associated rules and associated paths, manage it using your ACL dashboard. Select one or more ACLs to delete them, or edit basic rule settings, including type, access rights, and notes. And use the Search field to search for and manage specific ACLs. For more information on Distil, check out www.distilnetworks.com
Views: 372 Distil Networks
DrupalCon Barcelona 2015: Cut the crap. Practical tips and real world examples
 
56:09
What do you like best cutting a feature before launch or rescheduling a recap meeting? If your answer is "neither" this talk is for you. We've worked hard to cut the crap out of our process with some surprising, and some not so surprising results, and we'd like to share with you how we've done it. The success of your project is determined by the management of your project. How you make decisions and explore options. How you budget time and coordinate resources. What tools you use. And by tools we don't just mean "hey guys, let's use Basecamp” (barf) or “yeah, we shared that Google doc.” By tools we mean the real-world processes and strategies that ensure SUCCESSFUL projects. When/why/and how to structure meetings (yes, you really do need to talk to people!); How to best handle client feedback and minimize risk; The top mistakes programmers and designers make (and how to avoid those). We'll also share our experiences creating websites (in as little as a week) that have won competitive national awards. It’s a dash of waterfall project management, a cup of agile web development, and a pinch of lean manufacturing. There are no technical requirements for this session. We will share how Drupal specifically helps us be more efficient, but will not be writing any code in this session.
Views: 606 Drupal Association

100 dispersible aspirin 75mg tablets walmart
Anafranil 25mg efeitos colaterais do rivotril
Matriz de enfoque ambiental 2013 calendar
Actos 15mg tablets side effects
Cefixime tablets 200mg