Home
Search results “X content type options nginx”
Server einrichten - X-Content-Type-Options bei nginx
 
02:20
In diesem Tutorial schauen wir uns den header zu X-Content-Type Options an. ACHTUNG: HK-HOSTING EXISTIERT NICHT MEHR! Die Techniken ab Video 5 sind allerdings immer noch genauso gültig wie immer. Bei Fragen einfach schreiben. ❤❤❤ Früherer Zugang zu Tutorials, Abstimmungen, Live-Events und Downloads ❤❤❤ ❤❤❤ https://www.patreon.com/user?u=5322110 ❤❤❤ ❤❤❤ Keinen Bock auf Patreon? ❤❤❤ ❤❤❤ https://www.paypal.me/TheMorpheus ❤❤❤ 🌍 Website 🌍 https://the-morpheus.de ¯\_(ツ)_/¯ Tritt der Community bei ¯\_(ツ)_/¯ ** https://discord.gg/BnYZ8XS ** ** https://www.reddit.com/r/TheMorpheusTuts/ ** ( ͡° ͜ʖ ͡°) Mehr News? Mehr Code? ℱ https://www.facebook.com/themorpheustutorials 🐦 https://twitter.com/TheMorpheusTuts 🐙 https://github.com/TheMorpheus407/Tutorials Du bestellst bei Amazon? Bestell über mich, kostet dich null und du hilfst mir »-(¯`·.·´¯)-» http://amzn.to/2slBSgH Videowünsche? 🎁 https://docs.google.com/spreadsheets/d/1YPv8fFJOMRyyhUggK8phrx01OoYXZEovwDLdU4D4nkk/edit#gid=0 Fragen? Feedback? Schreib mir! ✉ https://www.patreon.com/user?u=5322110 ✉ https://www.facebook.com/themorpheustutorials ✉ https://discord.gg/BnYZ8XS ✉ [email protected] oder schreib einfach ein Kommentar :)
MIME sniffing (Explained by Example)
 
10:42
Any content served through HTTP “should” include meta data about its type. This is so the browser/client knows what to do with the content it receives. For example, if the content type header is an image the browser will preview it, if it is HTML it will render the markup and execute any javascript code. Content type however is optional and web masters sometimes don’t set it, which leave the browsers wondering about the content type it is consuming. So browsers had to implement parsing and “sniffing” techniques to detect the type of content when a content type header was not served. However, this caused security problems and attacks that we explain in this video! So to prevent sniffing, web servers can return X-Content-Type-Options: nosniff which opts out browsers from sniffing the content. Media type: https://en.wikipedia.org/wiki/Media_type#Common_examples Cheers! Hussein Nasser
Views: 1423 IGeometry
OWASP DevSlop E02 - Security Headers!
 
56:35
Franziska Bühler and Tanya Janca add security headers to their website, DevSlop.co and continue their DevSecOps learning journey. https://www.owasp.org/index.php/OWASP_DevSlop_Project Security Headers Used: x-frame-options: SAMEORIGIN X-Content-Type-Options: nosniff Referrer-Policy: strict-origin-when-cross-origin Websites Shown: https://securityheaders.com/ https://www.hardenize.com/
Views: 481 SheHacksPurple
NGINX - X Real IP and Proxy Host Header Configuration
 
17:33
Configure X Real IP and Proxy Host Header in Nginx
Views: 3357 Learning Center
Nginx - Mime Types Introduction
 
12:29
MIME (Multi-purpose Internet Mail Extensions) Types Introduction
Views: 1942 Learning Center
Introduction to Frame-busting, X-Frame-Options HTTP Header and Click-Jacking
 
03:50
Author: Jeremy Druin Twitter: @webpwnized Thank you for watching. Please support this channel. Up vote, subscribe or even donate by clicking "Support" at https://www.youtube.com/user/webpwnized! Description: Using Mutillidae, we contrast JavaScript frame busting code and the X-FRAME-OPTIONS header. The two methods are compared on a site being framed. The site is framed inside of an iframe tag and the two methods prevent the site from appearing in the iframe. These two methods are useful in helping with cross site framing and click-jacking. Mutillidae is a free web application with vulnerabilities added on purpose to give security enthusiast and developers an application to practice various attacks and defenses. It is a free download on Sourceforge. Updates on Mutillidae are tweeted at @webpwnized. The webpwnized YouTube channel is dedicated to information security, security testing and ethical hacking. There is an emphasis on web application security but many other topics are covers. Some of these include forensics, network security, security testing tools and security testing processes. The channel provides videos to encourage software developers and system administrators to perform security testing. Also, the channel educates the next generation of security testers and bug bounty hunters who want to respectfully, legally and ethically help system owners that allow security testing.
Views: 23135 webpwnized
X Windows Forwarding
 
02:28
*old video* This will teach you the basics of X Windows Forwarding.
Views: 92 Bruce Blacklaws
X frame options
 
00:54
Views: 954 Abe Nunez
Ubuntu Rtmp Nginx Server install part 1
 
05:01
Installing Nginx and Nginx-RTMP Install the tools required to compile Nginx and Nginx-RTMP from source. sudo apt-get install build-essential libpcre3 libpcre3-dev libssl-dev Make a working directory and switch to it. mkdir ~/working cd ~/working Download the Nginx and Nginx-RTMP source. wget http://nginx.org/download/nginx-1.7.5.tar.gz wget https://github.com/arut/nginx-rtmp-module/archive/master.zip Install the Unzip package. sudo apt-get install unzip Extract the Nginx and Nginx-RTMP source. tar -zxvf nginx-1.7.5.tar.gz unzip master.zip Switch to the Nginx directory. cd nginx-1.7.5 Add modules that Nginx will be compiled with. Nginx-RTMP is included. ./configure --with-http_ssl_module --add-module=../nginx-rtmp-module-master Compile and install Nginx with Nginx-RTMP. make sudo make install Install the Nginx init scripts. sudo wget https://raw.github.com/JasonGiedymin/nginx-init-ubuntu/master/nginx -O /etc/init.d/nginx sudo chmod +x /etc/init.d/nginx sudo update-rc.d nginx defaults Start and stop Nginx to generate configuration files. sudo service nginx start sudo service nginx stop Installing FFmpeg Add the FFmpeg PPA. sudo apt-get install software-properties-common sudo add-apt-repository ppa:kirillshkrogalev/ffmpeg-next Update the package lists. sudo apt-get update Install FFmpeg. sudo apt-get install ffmpeg Note: The apt-add-repository command may not be installed in some cases. To install it run sudo apt-get install software-properties-common. Configuring Nginx-RTMP and FFmpeg Open the Nginx configuration file. sudo nano /usr/local/nginx/conf/nginx.conf worker_processes auto; events { worker_connections 1024; } # RTMP configuration rtmp { server { listen 1935; # Listen on standard RTMP port chunk_size 4000; application show { live on; # Turn on HLS hls on; hls_path /mnt/hls/; hls_fragment 3; hls_playlist_length 60; # disable consuming the stream from nginx as rtmp deny play all; } } } http { sendfile off; tcp_nopush on; directio 512; default_type application/octet-stream; server { listen 8080; location / { # Disable cache add_header 'Cache-Control' 'no-cache'; # CORS setup add_header 'Access-Control-Allow-Origin' '*' always; add_header 'Access-Control-Expose-Headers' 'Content-Length'; # allow CORS preflight requests if ($request_method = 'OPTIONS') { add_header 'Access-Control-Allow-Origin' '*'; add_header 'Access-Control-Max-Age' 1728000; add_header 'Content-Type' 'text/plain charset=UTF-8'; add_header 'Content-Length' 0; return 204; } types { application/dash+xml mpd; application/vnd.apple.mpegurl m3u8; video/mp2t ts; } root /mnt/; } } }
Views: 2069 Magic Koala
Containerizing Python web apps with Docker, Flask, Nginx & uWSGI
 
25:38
Tutorial - https://pythonise.com/feed/flask/building-a-flask-app-with-docker-compose In this video, we'll be building a basic Flask web application using Docker, Nginx and uWSGI, along with learning some of the basic concepts of Docker and Docker compose Enjoying this type of content? Head over to my website at https://pythonise.com for full length text based tutorials, courses and guides. Want to help me make even better content? You can by supporting me on Patreon! https://www.patreon.com/JulianNash
Views: 731 Julian Nash
Server einrichten - X-Frame-Options bei nginx gegen Clickjacking
 
04:54
In diesem Tutorial schauen wir uns X-Frame-Options an, die gegen Clickjacking helfen können. ACHTUNG: HK-HOSTING EXISTIERT NICHT MEHR! Die Techniken ab Video 5 sind allerdings immer noch genauso gültig wie immer. Bei Fragen einfach schreiben. ❤❤❤ Früherer Zugang zu Tutorials, Abstimmungen, Live-Events und Downloads ❤❤❤ ❤❤❤ https://www.patreon.com/user?u=5322110 ❤❤❤ ❤❤❤ Keinen Bock auf Patreon? ❤❤❤ ❤❤❤ https://www.paypal.me/TheMorpheus ❤❤❤ 🌍 Website 🌍 https://the-morpheus.de ¯\_(ツ)_/¯ Tritt der Community bei ¯\_(ツ)_/¯ ** https://discord.gg/BnYZ8XS ** ** https://www.reddit.com/r/TheMorpheusTuts/ ** ( ͡° ͜ʖ ͡°) Mehr News? Mehr Code? ℱ https://www.facebook.com/themorpheustutorials 🐦 https://twitter.com/TheMorpheusTuts 🐙 https://github.com/TheMorpheus407/Tutorials Du bestellst bei Amazon? Bestell über mich, kostet dich null und du hilfst mir »-(¯`·.·´¯)-» http://amzn.to/2slBSgH Videowünsche? 🎁 https://docs.google.com/spreadsheets/d/1YPv8fFJOMRyyhUggK8phrx01OoYXZEovwDLdU4D4nkk/edit#gid=0 Fragen? Feedback? Schreib mir! ✉ https://www.patreon.com/user?u=5322110 ✉ https://www.facebook.com/themorpheustutorials ✉ https://discord.gg/BnYZ8XS ✉ [email protected] oder schreib einfach ein Kommentar :)
How To Secure Nginx with Let's Encrypt on Ubuntu 16.04
 
05:41
Let’s Encrypt is a new Certificate Authority. It’s free, automated, and open, thereby enabling encrypted HTTPS on web servers. It simplifies the process by providing a software client, letsencrypt, that attempts to automate most (if not all) of the required steps. You must own or control the registered domain name that you wish to use the certificate with and you need to have Nginx installed to. Commands: sudo apt-get update sudo apt-get -y install git sudo git clone https://github.com/letsencrypt/letsencrypt /opt/letsencrypt sudo nano /etc/nginx/sites-available/default -------- location ~ /.well-known { allow all; } -------- sudo nginx -t sudo systemctl reload nginx cd /opt/letsencrypt ./letsencrypt-auto certonly -a webroot --webroot-path=/var/www/html -d nipone.com -d www.nipone.com sudo ls -l /etc/letsencrypt/live/your_domain_name sudo openssl dhparam -out /etc/ssl/certs/dhparam.pem 2048 sudo nano /etc/nginx/snippets/ssl-example.com.conf --------------- ssl_certificate /etc/letsencrypt/live/example.com/fullchain.pem; ssl_certificate_key /etc/letsencrypt/live/example.com/privkey.pem; --------------- sudo nano /etc/nginx/snippets/ssl-params.conf --------------- # from https://cipherli.st/ # and https://raymii.org/s/tutorials/Strong_SSL_Security_On_nginx.html ssl_protocols TLSv1 TLSv1.1 TLSv1.2; ssl_prefer_server_ciphers on; ssl_ciphers "EECDH+AESGCM:EDH+AESGCM:AES256+EECDH:AES256+EDH"; ssl_ecdh_curve secp384r1; ssl_session_cache shared:SSL:10m; ssl_session_tickets off; ssl_stapling on; ssl_stapling_verify on; resolver 8.8.8.8 8.8.4.4 valid=300s; resolver_timeout 5s; add_header Strict-Transport-Security "max-age=63072000; includeSubdomains; preload"; add_header X-Frame-Options DENY; add_header X-Content-Type-Options nosniff; ssl_dhparam /etc/ssl/certs/dhparam.pem; ------------- sudo cp /etc/nginx/sites-available/default /etc/nginx/sites-available/default.bak sudo nano /etc/nginx/sites-available/default ------------ server { listen 80 default_server; listen [::]:80 default_server; server_name example.com www.example.com; return 301 https://$server_name$request_uri; } server { # SSL configuration listen 443 ssl http2 default_server; listen [::]:443 ssl http2 default_server; include snippets/ssl-example.com.conf; include snippets/ssl-params.conf; ------------- sudo systemctl restart nginx ============== In a web browser: https://www.ssllabs.com/ssltest/analyze.html?d=example.com ============== /opt/letsencrypt/letsencrypt-auto renew sudo crontab -e -------------Here you have Brackets please don't just copy paste you must replace those big brackets with normal one ---------------- 30 2 * * 1 /opt/letsencrypt/letsencrypt-auto renew >> /var/log/le-renew.log 35 2 * * 1 /bin/systemctl reload nginx ------------- cd /opt/letsencrypt sudo git pull _____________________________________ Music by Joakim Karud https://soundcloud.com/joakimkarud You can always Deploy an SSD cloud server in 55 seconds with Digitalocean. Anyone how use this link will receive $10 in hosting credit immediately after unlocking their account by adding a valid payment method. Sign Up with this link https://m.do.co/c/7b9082af029f
Views: 3181 NixInPix
Secure Nginx with Free Let’s Encrypt SSL Certificate on Ubuntu 16 Xenial Xerus
 
06:19
in This Tutorial you will learn How To Secure Nginx web server with Free Let’s Encrypt SSL Certificate on Ubuntu 16 04 Xenial Xerus Let’s Encrypt is a new non-profit Certificate Authority (CA) sponsored and founded by industry advocates; such as, the Electronic Frontier Foundation (EFF), Mozilla, and the Internet Security Research Group (ISRG). Let’s Encrypt will be launching very soon and will be offering free SSL certificates SSL certificates are used within web servers to encrypt the traffic between the server and client, providing extra security for users accessing your application. Let’s Encrypt provides an easy way to obtain and install trusted certificates for free. sudo apt-get install git bc && sudo git clone https://github.com/letsencrypt/letsencrypt /opt/letsencrypt gedit /etc/nginx/sites-available/quicknotepad.club location ~ /\.well-known { allow all; } sudo nginx -t sudo service nginx reload Generate an SSL Certificate:- cd /opt/letsencrypt ./letsencrypt-auto certonly -a webroot --webroot-path=/var/www/quicknotepad.club/html -d www.quicknotepad.club Change webroot-path to your site’s document root path- Change “www.quicknotepad.club” to your own domain name - sudo openssl dhparam -out /etc/ssl/certs/dhparam.pem 2048 gedit /etc/nginx/snippets/ssl-quicknotepad.club.conf ssl_certificate /etc/letsencrypt/live/www.quicknotepad.club/fullchain.pem; ssl_certificate_key /etc/letsencrypt/live/www.quicknotepad.club/privkey.pem; gedit /etc/nginx/snippets/ssl-params.conf # from https://cipherli.st/ # and https://raymii.org/s/tutorials/Strong_SSL_Security_On_nginx.html ssl_protocols TLSv1 TLSv1.1 TLSv1.2; ssl_prefer_server_ciphers on; ssl_ciphers "EECDH+AESGCM:EDH+AESGCM:AES256+EECDH:AES256+EDH"; ssl_ecdh_curve secp384r1; ssl_session_cache shared:SSL:10m; ssl_session_tickets off; ssl_stapling on; ssl_stapling_verify on; resolver 8.8.8.8 8.8.4.4 valid=300s; resolver_timeout 5s; # Disable preloading HSTS for now. You can use the commented out header line that includes # the "preload" directive if you understand the implications. #add_header Strict-Transport-Security "max-age=63072000; includeSubdomains; preload"; add_header Strict-Transport-Security "max-age=63072000; includeSubdomains"; add_header X-Frame-Options DENY; add_header X-Content-Type-Options nosniff; ssl_dhparam /etc/ssl/certs/dhparam.pem; sudo cp /etc/nginx/sites-available/quicknotepad.club /etc/nginx/sites-available/default.bak gedit /etc/nginx/sites-available/www.quicknotepad.club return 301 https://$server_name$request_uri; server { # SSL configuration listen 443 ssl http2 ; listen [::]:443 ssl http2 ; include snippets/ssl-quicknotepad.club.conf; include snippets/ssl-params.conf; } nginx -t && sudo nginx -s reload
CORS access control allow origin [SOLVED]
 
08:42
No access-control-allow-origin-header is present on required resource. Origin is therefore not allowed access Following is the solution to above problem. Copy code given in following link to your Web.Config of your file in System.WebServer tag https://amolwabale.blogspot.in/2017/06/cors-access-control-allow-origin-header.html
Views: 103499 Code Bandit
Ubuntu Rtmp Nginx Server install part 3
 
05:01
Installing Nginx and Nginx-RTMP Install the tools required to compile Nginx and Nginx-RTMP from source. sudo apt-get install build-essential libpcre3 libpcre3-dev libssl-dev Make a working directory and switch to it. mkdir ~/working cd ~/working Download the Nginx and Nginx-RTMP source. wget http://nginx.org/download/nginx-1.7.5.tar.gz wget https://github.com/arut/nginx-rtmp-module/archive/master.zip Install the Unzip package. sudo apt-get install unzip Extract the Nginx and Nginx-RTMP source. tar -zxvf nginx-1.7.5.tar.gz unzip master.zip Switch to the Nginx directory. cd nginx-1.7.5 Add modules that Nginx will be compiled with. Nginx-RTMP is included. ./configure --with-http_ssl_module --add-module=../nginx-rtmp-module-master Compile and install Nginx with Nginx-RTMP. make sudo make install Install the Nginx init scripts. sudo wget https://raw.github.com/JasonGiedymin/nginx-init-ubuntu/master/nginx -O /etc/init.d/nginx sudo chmod +x /etc/init.d/nginx sudo update-rc.d nginx defaults Start and stop Nginx to generate configuration files. sudo service nginx start sudo service nginx stop Installing FFmpeg Add the FFmpeg PPA. sudo apt-get install software-properties-common sudo add-apt-repository ppa:kirillshkrogalev/ffmpeg-next Update the package lists. sudo apt-get update Install FFmpeg. sudo apt-get install ffmpeg Note: The apt-add-repository command may not be installed in some cases. To install it run sudo apt-get install software-properties-common. Configuring Nginx-RTMP and FFmpeg Open the Nginx configuration file. sudo nano /usr/local/nginx/conf/nginx.conf worker_processes auto; events { worker_connections 1024; } # RTMP configuration rtmp { server { listen 1935; # Listen on standard RTMP port chunk_size 4000; application show { live on; # Turn on HLS hls on; hls_path /mnt/hls/; hls_fragment 3; hls_playlist_length 60; # disable consuming the stream from nginx as rtmp deny play all; } } } http { sendfile off; tcp_nopush on; directio 512; default_type application/octet-stream; server { listen 8080; location / { # Disable cache add_header 'Cache-Control' 'no-cache'; # CORS setup add_header 'Access-Control-Allow-Origin' '*' always; add_header 'Access-Control-Expose-Headers' 'Content-Length'; # allow CORS preflight requests if ($request_method = 'OPTIONS') { add_header 'Access-Control-Allow-Origin' '*'; add_header 'Access-Control-Max-Age' 1728000; add_header 'Content-Type' 'text/plain charset=UTF-8'; add_header 'Content-Length' 0; return 204; } types { application/dash+xml mpd; application/vnd.apple.mpegurl m3u8; video/mp2t ts; } root /mnt/; } } }
Views: 884 Magic Koala
Evolution of headers-more-nginx-module (Gource Visualization)
 
01:48
Gource visualization of headers-more-nginx-module (https://github.com/openresty/headers-more-nginx-module). Set, add, and clear arbitrary output headers
Views: 60 Landon Wilkins
Server einrichten - X-XSS-Protection bei nginx
 
03:34
In diesem Tutorial schauen wir uns den X-XSS-Protection-header an. ACHTUNG: HK-HOSTING EXISTIERT NICHT MEHR! Die Techniken ab Video 5 sind allerdings immer noch genauso gültig wie immer. Bei Fragen einfach schreiben. ❤❤❤ Früherer Zugang zu Tutorials, Abstimmungen, Live-Events und Downloads ❤❤❤ ❤❤❤ https://www.patreon.com/user?u=5322110 ❤❤❤ ❤❤❤ Keinen Bock auf Patreon? ❤❤❤ ❤❤❤ https://www.paypal.me/TheMorpheus ❤❤❤ 🌍 Website 🌍 https://the-morpheus.de ¯\_(ツ)_/¯ Tritt der Community bei ¯\_(ツ)_/¯ ** https://discord.gg/BnYZ8XS ** ** https://www.reddit.com/r/TheMorpheusTuts/ ** ( ͡° ͜ʖ ͡°) Mehr News? Mehr Code? ℱ https://www.facebook.com/themorpheustutorials 🐦 https://twitter.com/TheMorpheusTuts 🐙 https://github.com/TheMorpheus407/Tutorials Du bestellst bei Amazon? Bestell über mich, kostet dich null und du hilfst mir »-(¯`·.·´¯)-» http://amzn.to/2slBSgH Videowünsche? 🎁 https://docs.google.com/spreadsheets/d/1YPv8fFJOMRyyhUggK8phrx01OoYXZEovwDLdU4D4nkk/edit#gid=0 Fragen? Feedback? Schreib mir! ✉ https://www.patreon.com/user?u=5322110 ✉ https://www.facebook.com/themorpheustutorials ✉ https://discord.gg/BnYZ8XS ✉ [email protected] oder schreib einfach ein Kommentar :)
[Nginx] 2.how to install Nginx on ubuntu 18.04
 
08:13
Nginx product releases are of two types: namely, stable (even version numbers) and mainline or development (odd version numbers). The “stable” versions are tried and tested versions. It consists of major bug fixes but no new features are added in the stable version. The “mainline” version includes new features and bug fixes and usually is good for testing future versions of the product. In our examples we will be using the stable version but the steps to implement and configure mainline version is the same. 1.Open terminal window and open the sources.list file using the command sudo nano /etc/apt/sources.list 2.You can add the Nginx repository links at the bottom of the file. Scroll down to the very bottom of the file and add the two lines below : deb http://nginx.org/packages/ubuntu/ bionic nginx deb-src http://nginx.org/packages/ubuntu/ bionic nginx 3. Save the file. 4. Now you can download the package lists from the repositories and update them with the information for the newest versions of the packages and their dependencies. You can do that by typing the following command: sudo apt-get update 5.You will get the following error regarding the missing signature key. It is happening because gpg is trying to sign the nginx release and check its signature.But the signing key is missing on the server and hence gpg is not able to validate the nginx package: Reading package lists... Done W: GPG error: http://nginx.org trusty Release: The following signatures couldn't be verified because the public key is not available: NO_PUBKEY ABF5BD827BD9BF62 6. Download and add the nginx signature key using the command below: # wget http://nginx.org/keys/nginx_signing.key # sudo apt-key add nginx_signing.key 7.Now try re-synchronizing the package index from the sources: #sudo apt-get update 8.Now that the package list is updated and indexed, you can install Nginx: # sudo apt-get install nginx 9. You can verify Nginx installed the version: # nginx –v Nginx Folder Structure It is important to understand how the Package Manager-based Nginx installation folder structure looks.It will help you to locate the configuration files if you want to make any configuration changes such as changing the user account under which Nginx process executes, enables, or disables mime types for your website; modify FastCGI execution parameters; identify the default document root and error logs directory;or understand where the error logs files and Nginx executable are . •You can get the complete list of all Nginx configuration details and its version by using the – V command option with nginx . Here is a sample output of the command: # nginx –V nginx version: nginx/1.8.0 built by gcc 4.8.2 20140120 (Red Hat 4.8.2-16) (GCC) built with OpenSSL 1.0.1e-fips 11 Feb 2013 TLS SNI support enabled configure arguments: --prefix=/etc/nginx --sbin-path=/usr/sbin/nginx --conf-path=/etc/nginx/nginx.conf --error-log-path=/var/log/nginx/error.log --http-log-path=/var/log/nginx/access.log --pid-path=/var/run/nginx.pid ... output trimmed ... The Package Manager-based installation installs Nginx under /etc/nginx directory. It installs all necessary configuration files like nginx.conf file , which has the web server configuration details. It has a mine.types and fastcgi_params file that contains all the mime types that are enabled on the web server and fastcgi configuration details. All these default configurations enable the Nginx server to start: # ls –F /etc/nginx/ conf.d/ koi-utf fastcgi_params koi-win mime.types nginx.conf scgi_params uwsgi_params win-utf •The Nginx executable nginx is located in the system executable directory /usr/sbin/nginx . Since it is executing using the root user, you will need to be a root user or need to do su or sudo to start or stop the process: # ls -l /usr/sbin/nginx -rwxr-xr-x. 1 root root 890992 Apr 21 21:06 /usr/sbin/nginx •By default, the document root directory is located at /usr/share/nginx/html/ . It consists of a sample index.html and 50x.html file. You can deploy your application in the same document root directory and Nginx will serve the content: # ls /usr/share/nginx/html/ 50x.html index.html • The default error files and HTTP logfiles are located at /var/log/nginx/ . By default, there are two files: access. log and error. log . You will have to implement some sort of log file rotation mechanism such that your logfiles don’t grow up too large. You will learn more about these files and its configuration details in chapter 10 . • Try Lynx to browse to the http://localhost and you should be presented with the default index page. (If you get an alert saying Unable to connect to remote host , simply start the Nginx server using systemctl start nginx ) : # lynx http://localhost #linuxubuntu #ubuntu #nginx
Clientside security with the Security Header Injection Module SHIM  - OWASP AppSecUSA 2014
 
38:40
Recorded at AppSecUSA 2014 in Denver http://2014.appsecusa.org/ Thursday, September 18 • 3:00pm - 3:45pm Client-side security with the Security Header Injection Module (SHIM) Client-side security headers are useful countermeasures for Man-In-The-Middle, Clickjacking, XSS, MIME-Type sniffing, and Data Caching vulnerabilities. In this talk, we will review several security headers (e.g. Strict-Transport-Security, X-Frame-Options, X-XSS-Protection, Content-Security-Policy, and X-Content-Type-Options) and the various options available for each header. We will then demonstrate a new open source Security Header Injection Module (SHIM) for ASP.NET (developed by the presenters) that can be configured to mitigate the vulnerabilities by setting the security headers for any web application. The SHIM tool will be officially released at AppSec USA. Speakers Aaron Cure Senior Security Consultant, Cypress Data Defense, LLC Aaron is a senior security consultant at Cypress Data Defense, and an instructor and contributing author for the CDD Introduction to Internet Security in .NET course. After ten years in the U.S. Army as a Russian Linguist and a Satellite Repair Technician, he worked as a database administrator and programmer on the Iridium project, with subsequent positions as a telecommunications consultant, senior programmer, and security consultant. Eric Johnson Senior Security Consultant, Cypress Data Defense, LLC Eric is a senior security consultant at Cypress Data Defense, and an instructor and contributing author for the SANS DEV544 Secure Coding in .NET course. He previously spent six years performing web application security assessments for a large financial institution, and another four years focusing on ASP .NET web development. - Managed by the official OWASP Media Project https://www.owasp.org/index.php/OWASP_Media_Project
Views: 1241 OWASP
Server einrichten - HSTS HTTP Strict Transport Security für Nginx
 
05:23
In diesem Tutorial gehen wir einen Sicherheitsheader für eure Website an. ACHTUNG: HK-HOSTING EXISTIERT NICHT MEHR! Die Techniken ab Video 5 sind allerdings immer noch genauso gültig wie immer. Bei Fragen einfach schreiben. ❤❤❤ Früherer Zugang zu Tutorials, Abstimmungen, Live-Events und Downloads ❤❤❤ ❤❤❤ https://www.patreon.com/user?u=5322110 ❤❤❤ ❤❤❤ Keinen Bock auf Patreon? ❤❤❤ ❤❤❤ https://www.paypal.me/TheMorpheus ❤❤❤ 🌍 Website 🌍 https://the-morpheus.de ¯\_(ツ)_/¯ Tritt der Community bei ¯\_(ツ)_/¯ ** https://discord.gg/BnYZ8XS ** ** https://www.reddit.com/r/TheMorpheusTuts/ ** ( ͡° ͜ʖ ͡°) Mehr News? Mehr Code? ℱ https://www.facebook.com/themorpheustutorials 🐦 https://twitter.com/TheMorpheusTuts 🐙 https://github.com/TheMorpheus407/Tutorials Du bestellst bei Amazon? Bestell über mich, kostet dich null und du hilfst mir »-(¯`·.·´¯)-» http://amzn.to/2slBSgH Videowünsche? 🎁 https://docs.google.com/spreadsheets/d/1YPv8fFJOMRyyhUggK8phrx01OoYXZEovwDLdU4D4nkk/edit#gid=0 Fragen? Feedback? Schreib mir! ✉ https://www.patreon.com/user?u=5322110 ✉ https://www.facebook.com/themorpheustutorials ✉ https://discord.gg/BnYZ8XS ✉ [email protected] oder schreib einfach ein Kommentar :)
Ubuntu Rtmp Nginx Server install part 4
 
01:38
Installing Nginx and Nginx-RTMP Install the tools required to compile Nginx and Nginx-RTMP from source. sudo apt-get install build-essential libpcre3 libpcre3-dev libssl-dev Make a working directory and switch to it. mkdir ~/working cd ~/working Download the Nginx and Nginx-RTMP source. wget http://nginx.org/download/nginx-1.7.5.tar.gz wget https://github.com/arut/nginx-rtmp-module/archive/master.zip Install the Unzip package. sudo apt-get install unzip Extract the Nginx and Nginx-RTMP source. tar -zxvf nginx-1.7.5.tar.gz unzip master.zip Switch to the Nginx directory. cd nginx-1.7.5 Add modules that Nginx will be compiled with. Nginx-RTMP is included. ./configure --with-http_ssl_module --add-module=../nginx-rtmp-module-master Compile and install Nginx with Nginx-RTMP. make sudo make install Install the Nginx init scripts. sudo wget https://raw.github.com/JasonGiedymin/nginx-init-ubuntu/master/nginx -O /etc/init.d/nginx sudo chmod +x /etc/init.d/nginx sudo update-rc.d nginx defaults Start and stop Nginx to generate configuration files. sudo service nginx start sudo service nginx stop Installing FFmpeg Add the FFmpeg PPA. sudo apt-get install software-properties-common sudo add-apt-repository ppa:kirillshkrogalev/ffmpeg-next Update the package lists. sudo apt-get update Install FFmpeg. sudo apt-get install ffmpeg Note: The apt-add-repository command may not be installed in some cases. To install it run sudo apt-get install software-properties-common. Configuring Nginx-RTMP and FFmpeg Open the Nginx configuration file. sudo nano /usr/local/nginx/conf/nginx.conf worker_processes auto; events { worker_connections 1024; } # RTMP configuration rtmp { server { listen 1935; # Listen on standard RTMP port chunk_size 4000; application show { live on; # Turn on HLS hls on; hls_path /mnt/hls/; hls_fragment 3; hls_playlist_length 60; # disable consuming the stream from nginx as rtmp deny play all; } } } http { sendfile off; tcp_nopush on; directio 512; default_type application/octet-stream; server { listen 8080; location / { # Disable cache add_header 'Cache-Control' 'no-cache'; # CORS setup add_header 'Access-Control-Allow-Origin' '*' always; add_header 'Access-Control-Expose-Headers' 'Content-Length'; # allow CORS preflight requests if ($request_method = 'OPTIONS') { add_header 'Access-Control-Allow-Origin' '*'; add_header 'Access-Control-Max-Age' 1728000; add_header 'Content-Type' 'text/plain charset=UTF-8'; add_header 'Content-Length' 0; return 204; } types { application/dash+xml mpd; application/vnd.apple.mpegurl m3u8; video/mp2t ts; } root /mnt/; } } }
Views: 607 Magic Koala
Lua +Nginx on JUG Lodz
 
02:53
Lua +Nginx JUG Lodz 07.03.2018
Views: 31 Paweł Włodarski
Prevent Click Jaking Attack of your Apache web server
 
02:29
To remove Click jacking attack There are three settings for X-Frame-Options: 1. SAMEORIGIN: This setting will allow page to be displayed in frame on the same origin as the page itself. 2. DENY: This setting will prevent a page displaying in a frame or iframe. 3. ALLOW-FROM uri: This setting will allow page to be displayed only on the specified origin. Implement in Apache, IBM HTTP Server Add following line in Apache Web Server’s httpd.conf file Header always append X-Frame-Options SAMEORIGIN OR Implement in shared web hosting If your website is hosted on shared web hosting then you won’t have permission to modify httpd.conf. However, you can implement this by adding following line in .htaccess file. Header always append X-Frame-Options SAMEORIGIN Now you may check using https://tools.geekflare.com/web-tools/x-frame-options-test Success.
Views: 2227 Web illusion
Ubuntu Rtmp Nginx Server install part 2
 
05:01
Installing Nginx and Nginx-RTMP Install the tools required to compile Nginx and Nginx-RTMP from source. sudo apt-get install build-essential libpcre3 libpcre3-dev libssl-dev Make a working directory and switch to it. mkdir ~/working cd ~/working Download the Nginx and Nginx-RTMP source. wget http://nginx.org/download/nginx-1.7.5.tar.gz wget https://github.com/arut/nginx-rtmp-module/archive/master.zip Install the Unzip package. sudo apt-get install unzip Extract the Nginx and Nginx-RTMP source. tar -zxvf nginx-1.7.5.tar.gz unzip master.zip Switch to the Nginx directory. cd nginx-1.7.5 Add modules that Nginx will be compiled with. Nginx-RTMP is included. ./configure --with-http_ssl_module --add-module=../nginx-rtmp-module-master Compile and install Nginx with Nginx-RTMP. make sudo make install Install the Nginx init scripts. sudo wget https://raw.github.com/JasonGiedymin/nginx-init-ubuntu/master/nginx -O /etc/init.d/nginx sudo chmod +x /etc/init.d/nginx sudo update-rc.d nginx defaults Start and stop Nginx to generate configuration files. sudo service nginx start sudo service nginx stop Installing FFmpeg Add the FFmpeg PPA. sudo apt-get install software-properties-common sudo add-apt-repository ppa:kirillshkrogalev/ffmpeg-next Update the package lists. sudo apt-get update Install FFmpeg. sudo apt-get install ffmpeg Note: The apt-add-repository command may not be installed in some cases. To install it run sudo apt-get install software-properties-common. Configuring Nginx-RTMP and FFmpeg Open the Nginx configuration file. sudo nano /usr/local/nginx/conf/nginx.conf worker_processes auto; events { worker_connections 1024; } # RTMP configuration rtmp { server { listen 1935; # Listen on standard RTMP port chunk_size 4000; application show { live on; # Turn on HLS hls on; hls_path /mnt/hls/; hls_fragment 3; hls_playlist_length 60; # disable consuming the stream from nginx as rtmp deny play all; } } } http { sendfile off; tcp_nopush on; directio 512; default_type application/octet-stream; server { listen 8080; location / { # Disable cache add_header 'Cache-Control' 'no-cache'; # CORS setup add_header 'Access-Control-Allow-Origin' '*' always; add_header 'Access-Control-Expose-Headers' 'Content-Length'; # allow CORS preflight requests if ($request_method = 'OPTIONS') { add_header 'Access-Control-Allow-Origin' '*'; add_header 'Access-Control-Max-Age' 1728000; add_header 'Content-Type' 'text/plain charset=UTF-8'; add_header 'Content-Length' 0; return 204; } types { application/dash+xml mpd; application/vnd.apple.mpegurl m3u8; video/mp2t ts; } root /mnt/; } } }
Views: 717 Magic Koala
Server einrichten - Referrer Policy bei nginx
 
08:31
In diesem Tutorial schauen wir uns Referrer Policies etwas genauer ansehen. ACHTUNG: HK-HOSTING EXISTIERT NICHT MEHR! Die Techniken ab Video 5 sind allerdings immer noch genauso gültig wie immer. Bei Fragen einfach schreiben. ❤❤❤ Früherer Zugang zu Tutorials, Abstimmungen, Live-Events und Downloads ❤❤❤ ❤❤❤ https://www.patreon.com/user?u=5322110 ❤❤❤ ❤❤❤ Keinen Bock auf Patreon? ❤❤❤ ❤❤❤ https://www.paypal.me/TheMorpheus ❤❤❤ 🌍 Website 🌍 https://the-morpheus.de ¯\_(ツ)_/¯ Tritt der Community bei ¯\_(ツ)_/¯ ** https://discord.gg/BnYZ8XS ** ** https://www.reddit.com/r/TheMorpheusTuts/ ** ( ͡° ͜ʖ ͡°) Mehr News? Mehr Code? ℱ https://www.facebook.com/themorpheustutorials 🐦 https://twitter.com/TheMorpheusTuts 🐙 https://github.com/TheMorpheus407/Tutorials Du bestellst bei Amazon? Bestell über mich, kostet dich null und du hilfst mir »-(¯`·.·´¯)-» http://amzn.to/2slBSgH Videowünsche? 🎁 https://docs.google.com/spreadsheets/d/1YPv8fFJOMRyyhUggK8phrx01OoYXZEovwDLdU4D4nkk/edit#gid=0 Fragen? Feedback? Schreib mir! ✉ https://www.patreon.com/user?u=5322110 ✉ https://www.facebook.com/themorpheustutorials ✉ https://discord.gg/BnYZ8XS ✉ [email protected] oder schreib einfach ein Kommentar :)
Small WP Security
 
05:49
Small WP Security is a WordPress plugin which provides the basic security of your site. Features: Meta tags and Link: – Remove RSD Link (EditURI Link), – Remove WLW Manifest Link, – Remove Shortlink, – Remove Prev/Next Links, – Remove Canonical Link, – Remove DNS Prefetch Link, – Remove WP API Links and Scripts. Hide WP Version: – Remove WordPress generator version, – Remove WordPress version parameter from JS and CSS files. Remove RSS: – Clean up site head from the feed links and redirect them to the home page. Security Headers: – Remove Shortlink from HTTP Headers, – Remove X-Pingback from HTTP Headers, – Remove X-Powered-By from HTTP Headers, – Add X-Frame-Options, – Add X-XSS-Protection, – Add X-Content-Type-Options. Remove Emoji: – Remove Emoji Styles and Scripts. Comments links: – Remove Author′s Link, – Disable Auto Link.
Views: 129 Spoot
Deploying Flask Applications to the Cloud - Installing Nginx and mariadb servers (7/11)
 
07:16
In this video we will install and configure our Nginx web server and the MariaDB database server. See the whole lesson in the playlist “Deploying Flask Applications to the Cloud” in: https://www.youtube.com/playlist?list=PLaDyYdZGRivgLY2Wq_0B5eFpEbFtRMkuG Get my new "From Zero to Flask: The Professional Way" course with a special YouTube discount here: https://fmze.co/flask-yt Links: Sign up for the FromZero newsletter to receive news, special discounts and updates about our courses and our content. https://fmze.co/newsletter Twitter - https://twitter.com/fromzeroedu Facebook - https://www.facebook.com/fromzeroedu Website: https://www.fromzero.io
Views: 2114 FromZero
How to Enable MIME Sniffing in Internet Explorer 11
 
00:39
Linnet's How To _ Remember to like and subscribe See all my videoes in playlist / categories here https://www.youtube.com/channel/UCmd6xmZpPhJ6I9oe6hn65Hg/playlists?shelf_id=8&view=1&sort=dd Office 2016/365 videos https://www.youtube.com/playlist?list=PLzMiTkqquytvT3ufcnOv-1m7XD5QLRLkz Games videoes https://www.youtube.com/playlist?list=PLzMiTkqquytuzdRHhe5-YxplBITdq9XCs Windows Videoes https://www.youtube.com/playlist?list=PLzMiTkqquytuoDLOQbZ8dL1WncWS9AkQx
Views: 679 Linnet's How To
PERFECT LITTLE HOME SERVER [Raspberry Pi 3] PART 4 - Pydio DROPBOX REPLACEMENT
 
30:11
► Follow me on: • Twitter: https://twitter.com/salkohd • Google PLUS: https://goo.gl/OZQPwN • Facebook: https://www.facebook.com/salkohd ► This video explains how to install Pydio on Raspberry Pi running Raspbian Linux. This is the 3rd video from the series, previous videos: - Part 3: https://goo.gl/LP7ts9 - PART 2: https://goo.gl/gJXgX0 - PART 1: https://goo.gl/tFoiWo ► Commands used in video: - Generate the certificate & key pair: sudo openssl req -x509 -nodes -days 365 -newkey rsa:2048 -keyout /etc/ssl/private/nginx-selfsigned.key -out /etc/ssl/certs/nginx-selfsigned.crt - Generate the Diffie-Helman group: openssl dhparam -out /etc/ssl/certs/dhparam.pem 2048 THIS WILL TAKE A LONG TIME! - Uncomment /var/www/html/pydio/conf/bootstrap_conf.php //$AJXP_INISET["session.save_path"] = AJXP_DATA_PATH."/tmp/sessions"; - Add an A record in BIND, pointing to your Raspberry Pi server (remember to use an external IP if you are planning to use Pydio outside your home network) NGINX pydio vhost file: ----------------------------------------------------- server { server_name pydio.salkohd.com; listen 80; rewrite ^ https://$server_name$request_uri? permanent; } server { server_name pydio.salkohd.com; root /var/www/html/pydio; index index.php; listen 443 ssl; keepalive_requests 10; keepalive_timeout 60 60; access_log /var/log/nginx/access_pydio6_log; error_log /var/log/nginx/error_pydio6_log; ssl_certificate /etc/ssl/certs/nginx-selfsigned.crt; ssl_certificate_key /etc/ssl/private/nginx-selfsigned.key; ssl_dhparam /etc/ssl/certs/dhparam.pem; ssl_protocols TLSv1 TLSv1.1 TLSv1.2; ssl_prefer_server_ciphers on; ssl_ciphers "EECDH+AESGCM:EDH+AESGCM:AES256+EECDH:AES256+EDH"; ssl_ecdh_curve secp384r1; ssl_session_cache shared:SSL:10m; ssl_session_tickets off; ssl_stapling on; ssl_stapling_verify on; add_header Strict-Transport-Security "max-age=63072000; includeSubdomains"; add_header X-Frame-Options DENY; add_header X-Content-Type-Options nosniff; client_max_body_size 15M; client_body_buffer_size 128k; rewrite ^/dashboard|^/settings|^/welcome|^/ws- /index.php last; if ( !-e $request_filename ) { # WebDAV Rewrites rewrite ^/shares /dav.php last; # Sync client rewrite ^/api /rest.php last; # External users rewrite ^/user ./index.php?get_action=user_access_point last; # Public shares rewrite ^/data/public/([a-zA-Z0-9_-]+)\.php$ /data/public/share.php?hash=$1?; } rewrite ^/data/public/([a-zA-Z0-9_-]+)--([a-z]+)$ /data/public/share.php?hash=$1&lang=$2?; rewrite ^/data/public/([a-zA-Z0-9_-]+)$ /data/public/share.php?hash=$1?; # Prevent Clickjacking add_header X-Frame-Options "SAMEORIGIN"; # Only allow these request methods and do not accept DELETE, SEARCH and other methods if ( $request_method !~ ^(GET|HEAD|POST|PROPFIND|OPTIONS)$ ) { return 444; } location ~* ^/(?:\.|conf|data/(?:files|personal|logs|plugins|tmp|cache)|plugins/editor.zoho/agent/files) { deny all; } # Enables PHP location ~ \.php$ { # for ^/(index|plugins) request_uri should be changed set $request_url $request_uri; if ( $uri ~ ^/(index|plugins) ) { set $request_url /; } include fastcgi.conf; fastcgi_param REQUEST_URI $request_url; try_files $uri =404; fastcgi_pass unix:/var/run/php5-fpm.sock; } # Enables Caching location ~* \.(ico|css|js)$ { expires 7d; add_header Pragma public; add_header Cache-Control "public, must-revalidate, proxy-revalidate"; } } ----------------------------------------------------- ► MUSIC: Outro Music by Marley & Speo NCS (No Copyright Sounds) https://www.youtube.com/watch?v=AUEdtwct0ac Follow Speo: http://soundcloud.com/speomusic http://facebook.com/speomusic http://twitter.com/speomusic Follow Morley: https://soundcloud.com/romely https://www.youtube.com/user/TheMorleyMusic ► Subscribe for more videos like this!
Views: 3980 Salko
GPN18 - HTTP Security & Headers
 
54:08
https://media.ccc.de/v/gpn18-141-http-security-headers Du kennst observatory.mozilla.org oder securityheaders noch nicht? Dann bist du hier richtig; es gibt einen aktuellen Überblick über die Möglichkeiten eure Anwendungen ein stück sicherer zu machen und zu halten... Ives "dalini" Laaf
Views: 2382 media.ccc.de
Setup CentOS7 Nginx Uwsgi to serve Django Applications
 
52:44
I recorded myself setting up a CentOS7 stack for serving Django applications with Nginx and Uwsgi on a home server. Instructions for setting up Python3: https://www.digitalocean.com/community/tutorials/how-to-install-python-3-and-set-up-a-local-programming-environment-on-centos-7 Setting up EPEL : http://www.cyberciti.biz/faq/installing-rhel-epel-repo-on-centos-redhat-7-x/ Creating a system user: http://unix.stackexchange.com/questions/22275/how-to-create-an-unprivileged-user-in-centos
Views: 6898 SamAxeIsChuckFinley
Fix .exe has stopped working  or windows explorer has stopped working
 
05:43
Solved: ".exe has stopped working" "windows explorer not working" "fix windows explorer" "fix windows explorer has stopped working" " .exe file stopped". In this Video I have two CMD (command prompt) options for solve this problem on windows 7 64 bit and 32 bit User I already made a video for this error you can find out with this link : https://youtu.be/pBRyL0BqKT8 Fix : "internet explorer has stopped working" click this link : https://youtu.be/kvhXPDfb_ds Hope this will work for you DONATE TO DEEZ- PAYPAL DONATE BUTTON DOESN'T SUPPORT IN INDIA, BUT YOU CAN DO BY USING THIS LINK.: https://www.paypal.com/cgi-bin/webscr?cmd=_s-xclick&hosted_button_id=BRZVDCMQNWVH2 Any amount you can give is welcome.. Video Content: option First 1: UnInstall application 2: Open cmd as administrative mode 3: type bcdedit.exe /set nx AlwaysOff (for disable DEP) [ This option may won't work with windows 8,8.1 and 10. some cases 64bit OS also won't work. For that you need to disable Secure Boot Policy ] Check out How to disable Secure Boot Policy in this Link: https://youtu.be/S0sY0DWtRNw 4: Restart the computer . 5: Install the Application 6: Re enable DEP Open cmd and run as Administrator type bcdedit.exe /set nx AlwaysOn Restart . Second Option: May this will work without uninstall your application 1: Run cmd as administrator 2: Type bcdedit /set nx OptOut 3: Restart 4: Open My computer - Right click and Properties - On right side select advanced advanced system settings - On performance section select settings - Data execution prevention - turn on DEP for all programs and services except those i select - Add and choose your application .exe file then open. 5. Restart the computer Also you can do this option with uninstall your application . But you need add the .exe file of that program to DEP before you install . I created this video for educational purpose . Thanks for watch For more Subscribe Copyright Reserved © - 2015-16 All rights to this video is owned DEEZ : www.deezzone.com The video obeys the YouTube Community Guidelines and NO copyright content is present in this video. For Educational Purpose Only. Copyright Disclaimer Under Section 107 of the Copyright Act 1976, allowance is made for -fair use- for purposes such as criticism, comment, news reporting, teaching, scholarship, and research. Fair use is a use permitted by copyright statute that might otherwise be infringing. Non-profit, educational or personal use tips the balance in favour of fair use Copyright Reserved © - 2015-16
Views: 335030 DEE Z
How To: Stream To Multiple Streaming Platforms At Same Time
 
07:38
This video explains how to stream to multiple streaming platforms. I use obs to stream. https://obsproject.com/ https://obsproject.com/forum/resources/how-to-set-up-your-own-private-rtmp-server-using-nginx.50/ http://arut.github.io/nginx-rtmp-module/ https://github.com/illuspas/nginx-rtmp-win32 And stream to multiple platforms using a local nginx rtmp server and/or restream.io. https://restream.io/ https://www.facebook.com/live/create/?step=landing With this you can stream to twitch, periscope, youtube live, facebook live and others at the same time. Special mention to how to include basic authentication on the url for the services that require authentication. Some errors i noticed after publishing the recording: - https://github.com/illuspas is chinese, not japanese - restream.io custom rtmp stream costs 15 dollars a month, not 5 If you like this video, please consider supporting me through patreon: https://www.patreon.com/psenough
Views: 17690 Filipe Cruz
pds бесмертна
 
03:35
22:21:06 проверка работоспособности pds получен ответ HTTP/2 404 web сервер готов к рвботе .... x-node: node1-asu имя сервера node1-asu 22:20:29 остановка сервера БД 22:21:03 остановка сервера приложения. 22:21:10 проверка работоспособности сервера получен ответ Failed to connect to pds.cit-orleu.kz port 443 22:22:33 работа PDS поностью востановлена на резервном оборудовании. HTTP/2 404 server: nginx date: Thu, 15 Feb 2018 16:22:59 GMT content-type: text/html; charset=UTF-8 vary: Accept-Encoding x-node: node2-asu
Views: 20 Kirill Motov
(Cover) Anak rantauwan dari ujung timur indonesia full detail tutorial
 
02:17
HTTP/1.1 301 Moved Permanently Connection: keep-alive Content-Type: text/html Content-Length: 117 Status: 301 Moved Permanently Location: http://betterwaytoweb.com/tag-generator-for-youtube Cache-Control: no-cache X-Runtime: 0.004879 X-Request-Id: 35518e39-2b10-4c30-9bd8-862d45f92f44 Date: Sat, 23 Mar 2019 08:13:07 GMT X-Powered-By: Phusion Passenger 5.0.28 Server: nginx/1.10.0 + Phusion Passenger 5.0.28 Via: 1.1 vegur HTTP/1.1 200 OK Connection: keep-alive Content-Type: text/html; charset=utf-8 Transfer-Encoding: chunked Status: 200 OK Cache-Control: max-age=0, private, must-revalidate Etag: W/"2493d7c8dd966843df9bab45b17194fa" X-Frame-Options: SAMEORIGIN X-Xss-Protection: 1; mode=block X-Content-Type-Options: nosniff X-Runtime: 0.019284 X-Request-Id: 6577372c-5a78-4233-bed1-4c1a3ce11d21 Date: Sat, 23 Mar 2019 08:13:07 GMT Set-Cookie: _website4_2_session=V0RYaUZiRndJMDBMTnVVMmhldE9hZkowcUd4TjltT0IvbThzSm5JY0k5L0Y1aElBcDc5NHlBLzdiMkxTbjUxVUxXK2ZvdGx1cEoxcUQ3WS9YaFRKM29lVy9OdTR6ZlN5bG5lMGpIZWJ1YVRTd0lkcTBjdWI5SlV2U09WU0xjcDFBZjZ2VGNWL0lYMGUvalFzaXJjQU1BPT0tLVRRbWk4dlJOQkdyb0JVU0k3KzZvV1E9PQ%3D%3D--f21c07f6c99df8eaffbf54d9906f2b2212e1d0fd; path=/; HttpOnly X-Powered-By: Phusion Passenger 5.0.28 Server: nginx/1.10.0 + Phusion Passenger 5.0.28 Via: 1.1 vegur
Views: 19 JHOE ANAK TIMUR
mitigating cross-site scripting attacks with a content security policy
 
17:10
A content security policy (CSP) can help Web application developers and server administrators better control website content and avoid vulnerabilities to cross-site scripting (XSS). In experiments with a prototype website, the authors' CSP implementation successfully mitigated all XSS attack types in four popular browsers.
Views: 244 Spring Source
Virtual Host + Apache httpd server + Tomcat + mod_jk connector
 
27:30
In my last post (Virtual Host in Tomcat) we discussed about how setup the virtual host in Tomcat. Its cost effective technique because only one public IP is enough to host multiple domain. If we have big organization and each department want to host their website in locally in different machine. then how to achieve the virtual host concept?. In this post we will see the how we do this. Vistit : http://www.ramkitech.com/2012/03/virtual-host-apache-httpd-server-tomcat.html Subscribe http://www.youtube.com/subscription_center?add_user=ramkicdac Website http://www.ramkitech.com Ramki on Twitter http://www.twitter.com/ramkicse
Views: 78807 Rama krishnnan EP
Was ist ein Reverse Proxy?
 
06:37
Neben dem "normalen" oder forwarding Proxyserver gibt es den reverse Proxy, der vor einem Web Server oder API betrieben wird. Dieses Video dient als Vorbereitung zum Thema API Gateway. Ein API Gateway ist im Prinzip ein reverse Proxy Server mit speziellen Eigenschaften. Dazu mehr im nächsten Video. Lerne mehr über APIs in unseren Schulungen: REST APIs - Die Einführung https://www.predic8.de/rest-schulung.htm REST und API Design mit Swagger https://www.predic8.de/api-rest-design-schulung.htm Social: @thomasub https://twitter.com/thomasub
Views: 137 predic8
Install and Configure Apache Traffic Server 7.0 as Reverse Proxy on Linux
 
07:13
# Create the compilation environment and install required packages sudo yum groupinstall "Development Tools" -y sudo yum install wget pcre-devel tcl-devel expat-devel openssl-devel libcap-devel hwloc hwloc-devel ncurses-devel libcurl-devel -y # Download trafficserver cd /usr/src sudo wget $url # Verify md5 # https://www.apache.org/dist/trafficserver/ md5sum trafficserver-7.0.0.tar.bz2 sudo tar xjvf trafficserver-7.0.0.tar.bz2 cd trafficserver-7.0.0 # Add group/user to run the service sudo groupadd -g 176 trafficserver sudo useradd -g 176 -u 176 -d /var/empty -s /sbin/nologin trafficserver # Compile trafficserver sudo ./configure --prefix=/opt/ts --with-group=trafficserver --with-user=trafficserver sudo make sudo make install # Create systemd script sudo vi /lib/systemd/system/trafficserver.service #Add [Unit] Description=Apache Traffic Server After=syslog.target network.target [Service] Type=simple ExecStart=/opt/ts/bin/traffic_cop ExecReload=/opt/ts/bin/traffic_line -x [Install] WantedBy=multi-user.target # Reload systemd sudo systemctl daemon-reload # Configure trafficserver cd /opt/ts/etc/trafficserver/ sudo vi records.config # Enable these options CONFIG proxy.config.http.cache.http INT 1 CONFIG proxy.config.reverse_proxy.enabled INT 1 CONFIG proxy.config.url_remap.remap_required INT 1 CONFIG proxy.config.url_remap.pristine_host_hdr INT 1 CONFIG proxy.config.http.server_ports STRING 80 80:ipv6 # Configure trafficserver with the origin server sudo vi remap.config map http://www.frostwolfs.org http://internal.frostwolfs.org # Increase the cache size sudo vi storage.config #Add var/trafficserver 5G # Start the service sudo systemctl start trafficserver # Enable service at boot sudo systemctl enable trafficserver # Configure the firewall sudo firewall-cmd --zone=public --add-port=80/tcp --permanent sudo firewall-cmd --reload # Test from the client
Views: 2619 Alejandro T
Finding HTTP Headers For HTTP Post
 
01:15
Learn how to use the HTTP post method to post contact forms and more without running a browser at all! In this video I use: https://addons.mozilla.org/en-us/firefox/addon/live-http-headers/ to help me find the details on the post. Once you find the parameters you can do it over and over again with sockets. In my next video I will show you how to submit the data using the parameters found in this video. HTTP headers http chrome example firefox case sensitive accept content-type cache-control no cache referer authentication addon apache accept-language json asp.net android access-control-allow-origin and caching browser basic type body base64 best practices boundary bad request basics check cookie c# connection close charset date download file disable header dnt delimiter filename dump data gzip expires encoding etag extension enable content expiration error utf-8 encrypted over ssl for dummies format static resources force ie get google post compression geolocation godaddy generator host have already been sent html html5 htaccess p3p https how to use set in javascript php iphone iis internet explorer curl image safari java jquery jsp jersey jpg js jax-ws keep-alive timeout key value kerberos live keyboard shortcut koc fetching keep alive what kind of is passed via response list location last modified length link locale limit lookup lowercase max multiple values mime max-age method mobile device detection mozilla mac address nginx naming convention .net new line name never noindex nodejs ntlm online origin order options only opera on os oauth headers_out plugin perl proxy python pdf pragma parameters query string quotes quick reference q quoted ¿live qué es http_query raw headers\u003cb\u003e crlf rfc redirect rest rails ruby refresh r n remote_addr separator status code security syntax set-cookie spec risk sniffer tutorial test prevent timestamp timezone tester tab telnet token user agent unicode username password underscore url uri vs vary viewer view version valid characters soap variables cookies wiki wireshark w3schools w3c wcf web config wordpress with firebug windows x prefix xml forwarded x-ua-compatible x_csize 0 xmlhttprequest x-powered-by x-cache xss yoyo youtube yii your do you where put zip zend zend_soap_client zend_http_client client framework
Views: 12112 Patrick Miles
Mitigating Cross Site Scripting Attacks with a Content Security Policy
 
18:44
Mitigating Cross-Site Scripting Attacks with a Content Security Policy Abstract: A content security policy (CSP) can help Web application developers and server administrators better control website content and avoid vulnerabilities to cross-site scripting (XSS). In experiments with a prototype website, the authors' CSP implementation successfully mitigated all XSS attack types in four popular browser SIMILAR VIDEOS: https://www.youtube.com/watch?v=AZI6oHAEtU8 https://www.youtube.com/watch?v=o0mT99zKAqA https://www.youtube.com/watch?v=X7jZtTq74WU https://www.youtube.com/watch?v=EO1rgFk07kQ https://www.youtube.com/watch?v=ACtU9aaoh_8 https://www.youtube.com/watch?v=cbZFKV4A0X8 https://www.youtube.com/watch?v=AWcD3pIGJjI https://www.youtube.com/watch?v=0y5w5CbMips https://www.youtube.com/watch?v=rhCtDFPNHCE https://www.youtube.com/watch?v=t41nfgBy8pY https://www.youtube.com/watch?v=LLUlzVlIJOw https://www.youtube.com/watch?v=mSjS4IGyrW0 https://www.youtube.com/watch?v=1TnAqAkxuws https://www.youtube.com/watch?v=nxoUUe8rrtQ https://www.youtube.com/watch?v=XBzwg1EY2SI https://www.youtube.com/watch?v=RRVWWUd9NLk https://www.youtube.com/watch?v=Es0eHDHksiM https://www.youtube.com/watch?v=x5CAAPGuo3g https://www.youtube.com/watch?v=sQKIpfEpQmo https://www.youtube.com/watch?v=hcmrJkwn1T4 https://www.youtube.com/watch?v=cNw3u68a424 https://www.youtube.com/watch?v=6sKfA1vFZBA https://www.youtube.com/watch?v=cFsryGMYxIE For More Videos - https://www.youtube.com/channel/UCR5lsF-lDQu6rVYVJPqNn6Q SOCIAL HANDLES: SCOOP IT- http://www.scoop.it/u/1croreprojects FACEBOOK - https://www.facebook.com/1Croreprojectsieeeprojects/ TWITTER - https://twitter.com/1crore_projects LINKEDIN - https://www.linkedin.com/in/1-crore-projects-ba982a118/ GOOGLE+ - https://plus.google.com/u/0/105783610929019156122 PINTEREST - https://in.pinterest.com/onecroreproject/ BLOG - 1croreprojectz.blogspot.com DOMAIN PROJECTS DOTNET - http://www.1croreprojects.com/dotnet-ieee-project-centers-in-chennai.php JAVA - http://www.1croreprojects.com/java-ieee-projects-chennai.php EMBEDDED - http://www.1croreprojects.com/embedded-systems-ieee-projects-chennai.php MATLAB - http://www.1croreprojects.com/matlab-ieee-projects-chennai.php NS2 - http://www.1croreprojects.com/ns2-ieee-projects-chennai.php VLSI -http://www.1croreprojects.com/vlsi-ieee-projects-chennai.php FOR PROJECTS - http://www.1croreprojects.com/ BUSINESS CONTACT: Email - [email protected] We are always open for all business prospects. You can get in touch which us, using the above mentioned e-mail id and contact number. ABOUT 1CROREPROJECTS: 1Crore Projects is company providing outstanding, cost-effective, effective result authorized on solutions. Our objective is to create solutions that enhance company process and increase come back in most possible time. We started truly to provide solutions to the customers all over the world. We have been effectively in providing solutions for different challenges across a wide range of market and customers propagate across the globe.
Views: 140 1 Crore Projects
Web Conference, Webinar and 1-1 Video Chat (AVIDO Web Conference)
 
02:46
AVIDO delivers a truly all-in-one web conferencing solution for all your organization-wide online communication needs. Web conferencing usage can vary widely, depending on business necessities, daily fluctuations in application requirements, and even personal preferences. Using AVIDO as your communication medium offers you easily accessible solutions to any communication challenge -- whenever or wherever they arise. Using AVIDO is easy, fast, and fun. plug-in and with no installation or download, you can be up-and-running in minutes; giving you and your team immediate access to your own online meeting room 24/7 That means you'll have access to AVIDO features such as full-duplex video conferencing, screen and file sharing, chat, session recording and much more. please visit http://www.avidousa.com also http://www.avidousa.com. Company Website: http://www.voiptelprovider.com/main/features/ via remote control. File up loader Type or highlight over your document Zoom in and out No Downloads or Installations The AVIDO client software is designed to work on any computer system that can run Adobe Flash Player®, meaning it will run on Microsoft® Windows®, Apple OS X®, various distributions of Linux® and Sun Solaris™. AVIDO will even run on Windows® PocketPCs for true on the road access. AVIDO was designed with the user in mind. A typical conference organiser can learn the most important features within a few minutes, and 80% of the system within an hour. The key features are prominently displayed, making your first web conference an enjoyable and intuitive experience. For a conference participant/invitee, it is even easier. Joining a meeting or webinar is as easy as watching YouTube®. You simply click the link, wait for the conference to load, sit back and enjoy the show. You don't need to download or install anything. Here are some of the Avido Web Conference Components Ubuntu Ubuntu is a distribution of the Linux Operating system, focused on user friendly Graphical User Interfaces. ubuntu.com ActiveMQ Apache ActiveMQ is an open source enterprise messaging and integration patterns provider. activemq.apache.org Ghostscript Ghostscript is an interpreter for the Post Script language and for PDF. ghostscript.com Grails Grails is an open-source web application framework that leverages the Groovy language and complements Java Web development. grails.org swf Tools SWFTools is a collection of utilities for working with Adobe Flash files (SWF files). swftools.org Asterisk Asterisk is an open source PBX, telephony engine, and telephony applications toolkit. asterisk.org MySQL MySQL is an open source database. mysql.com Red5 Red5 is an Open Source Flash Server written in Java. osflash.org nginx nginx "engine x" is a HTTP server and mail proxy server. nginx.net Asterisk Java The Asterisk-Java package consists of a set of Java classes that allow you to easily build Java applications that interact with an Asterisk PBX Server. asterisk-java.org Xuggler Xuggler is a library for Java or C++ developers that allows you to decode, manipulate, and encode (almost) any type of video file in near real time. xuggle.com Open Office OpenOffice.org is the leading open-source office software suite for word processing, spreadsheets, presentations, graphics, databases and more. http://openoffice.org/ Image Magick Image Magick is a collection of tools designed to view, modify, and manipulate images in nearly 70 different image formats. It also allows you to create images dynamically, making it suitable for Web applications. imagemagick.org Flex SDK lex is a highly productive, open source framework for building and maintaining expressive web applications that deploy consistently on all major browsers, desktops and operating systems. opensource.adobe.com Tomcat Apache Tomcat is an implementation of the Java Servlet and JavaServer Pages technologies. The Java Servlet and JavaServer Pages specifications are developed under the Java Community Process. tomcat.apache.org Alfresco Alfresco Web Content Management (WCM) is the leading open source solution that is: An Open Source, lower cost, and lower risk solution that offers greater control and visibility over current and future costs A full ECM suite providing complete control over any content from within a single integrated platform â€" documents, images, video, audio, etc. A complete collaboration environment for creating, approving and publishing content to the web Built on industry standard technology that is as simple to use as a shared network drive Sakai Sakai AVIDO integrates a Sakai , allowing AVIDO users to easily create, manage and join AVIDO sakaiproject.org RedMine Avido integration for RedMine allows you to create, edit, and manage meetings within the RedMine interface. www.redmine.org All these components and much much more This Video brought you by Smart Voice Network please visit us at http://www.avidousa.com
Views: 1771 LiveGroup Link
Fix Magento 2 no load css, js
 
07:42
Fix Magento 2 no load css, js after install and admin page die. Step1: enable rewrite: sudo a2enmod rewrite Step2: insert to /etc/apache2/sites-available/000-default.conf . <Directory / var / www / html> AllowOverride All Requires all levels </ Directory> Step3: restart apache2 sudo service apache2 restart. if error css. Run command in magento root php bin/magento setup:statuc-content:deploy
Views: 3236 TatTanTat
How to run Python Scripts with Apache and mod_wsgi on Linux Mint 18.3
 
02:55
This video covers the method to run Python Scripts with Apache and mod_wsgi on Linuxmint 18.3. mod_wsgi is an Apache module that can be used for serving Python scripts over HTTP via Apache web server. For more explanation on this video: https://www.linuxhelp.com/how-to-run-python-scripts-with-apache-and-mod-wsgi-on-linuxmint-18-03
Views: 117 Linux Help
microservice nodejs rabbitMQ
 
24:44
คำสั่งต่าง ๆ ที่ใช้มีดังนี้ 1 เราจะทำการ run RabbitMQ ใน docker ด้วยคำสั่ง docker run -d --hostname my-rabbit --name rabbit13 -p 8080:15672 -p 5672:5672 -p 25676:25676 rabbitmq:3-management 2 จากนั้นทำการทดสอบ ด้วยการ พิมพ์ http://localhost:8080 ไปที่ browser 3 สร้าง folder เพื่อเก็บไฟล์ที่ใช้ run test-rabbitMQ 4 กด shitf + คลิ๊กขวา แล้วเลือก Open PowerShell window here 5 ใช้คำสั่ง code . เพื่อเปิด folder ของเราใน Visual Studio Code 6 พิมพ์คำสั่ง git init เพื่อที่จะเริ่มเก็บประวัติการทำงานของเราเอง 7 พิมพ์คำสั่ง npm init เพื่อสร้างไฟล์ package.json 8 สร้างไฟล์ขึ้นมาสองไฟล์ คือ pub.js และ sub.js เพื่อทำการทดสอบการ public และการ subscribe 9 นำโค้ตนี้ ไปใส่ในไฟล์ที่ชื่อ pub.js var amqp = require('amqplib/callback_api'); amqp.connect('amqp://localhost:5672', function (err, conn) { conn.createChannel(function (err, ch) { var ex = 'pub_sub_meetup28'; var msg = process.argv.slice(2).join(' ') || 'Hello World!'; ch.assertExchange(ex, 'fanout', { durable: false }); ch.publish(ex, '', new Buffer(msg)); console.log(" [x] Sent %s", msg); }); setTimeout(function () { conn.close(); process.exit(0) }, 500); }) 10 นำโค้ตนี้ ไปใส่ในไฟล์ที่ชื่อ sub.js var amqp = require('amqplib/callback_api'); amqp.connect('amqp://localhost:5672', function (err, conn) { conn.createChannel(function (err, ch) { var ex = 'pub_sub_meetup28'; ch.assertExchange(ex, 'fanout', { durable: false }); ch.assertQueue('', { exclusive: true }, function (err, q) { console.log(" [*] Waiting for messages in %s. To exit press CTRL+C", q.queue); ch.bindQueue(q.queue, ex, ''); ch.consume(q.queue, function (msg) { console.log(" [x] %s", msg.content.toString()); }, { noAck: true }); }); }); }) 11 ทำการ npm amqplib --save 12 ทดสอบ run ไฟล์ sub.js และ pub.js ด้วยคำสั่ง node sub.js และ node pub.js link github : https://github.com/Joseboom/test-rabbitmq
Views: 111 NATTAPOL JAIDEE
How to change the cached web page settings for Microsoft Windows Server 2012
 
01:23
Author and talk show host Robert McMillen explains how to change the cached web page settings for Microsoft WWindows Server 2012.
Views: 188 Robert McMillen