Reading a series of articles, Apache 2 with SSL/TLS: Step-by-Step:
I’ve done all this before. Just checking if I’ve missed anything. Might have a play with client certificates. Haven’t used them before.
Apache 2 with SSL/TLS: Step-by-Step
Reply
Daily Archives: 2012-02-09 [Thursday]
Postfix Virtual Mailboxes and Procmail Filtering
Am interested in getting procmail to work with my Postfix/Courier setup. Am using virtual domains/aliases/mailboxes stored in a MySQL database and a Maildir file system. Have only just begun my investigations. So far I’ve found:
- Postfix Virtual Mailboxes and Procmail Filtering
- Anti-virus and anti-spam measures on my server
- Procmail + Postfix + Virtual Mail User Howto
- Zarafa, Postfix and Procmail with virtual users
- Filtering E-Mail with Postfix and Procmail, Part One
- Filtering E-Mail with Postfix and Procmail, Part One
- Filtering E-Mail with Postfix and Procmail, Part Two
- Postfix – the Big Picture
Security considerations for find
Read about the security considerations for find. Find is a *nix tool for searching though directories for files and filtering them to build lists or run commands.
While I’m here I might as well show you my latest find command, I think it’s a beauty. :)
sudo find . \
\( \( \( \! -user jj5 \) -or \( \! -group jj5 \) \) \
-execdir chown jj5:jj5 '{}' \+ \) , \
\( \( -type d \( \! -perm -u+rwx \) \) \
-execdir chmod u+rwx '{}' \+ \) , \
\( \( -type f \( \! -perm -u+rw \) \) \
-execdir chmod u+rw '{}' \+ \)
Postfix and Unsolicited Commercial Email (UCE, aka SPAM)
Read My Understanding Of How UCE Actually Works which was a really helpful and enlightening article. (I saved a local copy.)
Also read Postfix Configuration – UCE Controls.
Apache UseCanonicalName Directive
Reading about the Apache UseCanonicalName configuration directive. Don’t think I’ll be using it.
Apache ServerSignature and ServerTokens configuration options
Reading a few articles that recommend hiding your Apache system details from generated web pages. Not sure I care.
How (and why) to disable apache server signature on your web pages and Improve Apache Web Server Security: Use ServerTokens and ServerSignature to Disable Header.
Apache Performance Tuning
Reading about Apache Performance Tuning. Don’t get the feeling like I’ve learned any tricks that will make much difference.
HTTP Content Negotiation in Apache
Reading about HTTP Content Negotiation support in Apache.
Differences between /tmp and /var/tmp
Reading about the differences between /tmp and /var/tmp. Not sure I feel like I know more than I did when I started reading.
Online Certificate Status Protocol
Reading about the Online Certificate Status Protocol, which is RFC 2560.
Overall it just pisses me off.