###########################################################
# Apache 2.4.x Compile and Install:

yum install openssl-devel

http://httpd.apache.org/download.cgi
http://apr.apache.org/download.cgi

tar -xzf httpd-2.4.3.tar.gz

cp apr-1.4.6.tar.gz httpd-2.4.3/srclib/
cp apr-util-1.4.1.tar.gz httpd-2.4.3/srclib/
cd httpd-2.4.3/srclib/
tar -xzf apr-1.4.6.tar.gz
tar -xzf apr-util-1.4.1.tar.gz
mv apr-1.4.6 apr
mv apr-util-1.4.1 apr-util
cd ..

./configure --with-included-apr --enable-ssl --enable-so --prefix=/usr/local/apache-2.4.3

make
make install

cd /usr/local/
ln -s apache-2.4.3 apache

See: http://httpd.apache.org/docs/current/upgrading.html

###########################################################
# Installing mod_jk (tomcat-connectors)

tar -xzf tomcat-connectors-1.2.37-src.tar.gz
cd tomcat-connectors-1.2.37-src/native
./configure --with-apxs=/usr/local/apache/bin/apxs
make
cp ./apache-2.0/mod_jk.so /usr/local/apache/modules/mod_jk-1.2.37.so
cd /usr/local/apache/modules/
ln -s mod_jk-1.2.37.so mod_jk.so

###########################################################
# SSL Configuration for Apache 2.4.x
# (condensed from
http://httpd.apache.org/docs-2.4/ssl/ssl_faq.html)

1. Create a RSA private key for your Apache server (will be Triple-DES encrypted and PEM formatted):
    openssl genrsa -des3 -out server.key 2048

2. Create a Certificate Signing Request (CSR) with the server RSA private key (output will be PEM formatted):
    openssl req -new -key server.key -out server.csr

# Now that you've got a CSR, it needs to be signed by a Certifying Authority (CA):
#   Choice A:  You can send the CSR to a commercial CA to be signed,
#              in which case they would send you back the SSL certificate.
#   Choice B:  Create your own certificate authority (CA) and sign it yourself (See
http://httpd.apache.org/docs/2.4/ssl/ssl_faq.html#aboutcerts)


###########################################################
# Apache 2.2.x Compile and Install:

"./configure" \
"--prefix=/usr/local/apache-2.2.22" \
"--enable-so" \
"--enable-mods-shared=all ssl proxy cache mem_cache file_cache disk_cache"

make
make install

cd /usr/local/
ln -s apache-2.2.22 apache

###########################################################
# Apache 2.0.x Compile and Install:

"./configure" \
"--prefix=/usr/local/apache-2.0.52" \
"--enable-so" \
"--enable-rewrite=shared" \
"--enable-ssl=shared" \
"--enable-proxy=shared" \
"--enable-auth-digest=shared" \
"--enable-deflate=shared" \
"--enable-expires=shared" \
"--enable-headers=shared" \
"--enable-status=shared" \
"--enable-cgi=shared"

make
make install

cd /usr/local/
ln -s apache-2.0.46 apache

mkdir /var/log/httpd
chown web:web /var/log/httpd

Bonus Note: To get the ssl module to compile on Red Hat 9, run the following commands first:
cd /usr/include/openssl/
ln -s /usr/kerberos/include/* ./

###########################################################
# SSL Configuration for Apache 2.0.x
# (condensed from
http://httpd.apache.org/docs-2.0/ssl/ssl_faq.html)
 
1. Create a RSA private key for your Apache server (will be Triple-DES encrypted and PEM formatted):
    openssl genrsa -des3 -out server.key 1024
 
2. Create a Certificate Signing Request (CSR) with the server RSA private key (output will be PEM formatted):
    openssl req -new -key server.key -out server.csr

# Now that you've got a CSR, you have two choices:
#   Choice A:  You can send the CSR to Verisign or Thawte (or somewhere else) to be signed,
#              in which case they would send you back the SSL certificate.
#   Choice B:  Create your own certificate authorityi (CA) and sign it yourself by following the next three steps:

1. Create a RSA private key for your CA (will be Triple-DES encrypted and PEM formatted):
    openssl genrsa -des3 -out ca.key 1024
 
2. Create a self-signed CA Certificate (X509 structure) with the RSA key of the CA (output will be PEM formatted):
    openssl req -new -x509 -days 365 -key ca.key -out ca.crt
 
3. Now you can use this CA to sign the server CSR and create a SSL certificate:
    ./sign.sh server.csr (sign.sh comes from the mod_ssl source tarball. Go get one from
www.modssl.org)

###########################################################
# PHP Compile and Install:

./configure --with-apxs2 --enable-mbstring --with-mysql --with-imap --with-pgsql --with-kerberos --with-imap-ssl

###########################################################
# Interesting mod_rewrite Example:

Can anyone identify this http exploit? Seen in the apache logs:
foo.bar.com - - [30/May/2004:02:45:28 -0400] "SEARCH  /\x90\x02\xb1\x02\xb1\x02\xb1\x02\xb...

This is an older IIS WebDAV exploit.  More info athttp://www.microsoft.com/technet/security/bulletin/ms03-007.mspx
You can mod_rewrite these attempts to /dev/null

RedirectMatch permanent (.*)\/x90\/(.*)$ /dev/null

###########################################################


출처 :
http://www.luckydragon.net/tech/apache_notes.html


※ 위 내용은, 여러 자료를 참고하거나 제가 주관적으로 정리한 것입니다.
   잘못된 정보나 보완이 필요한 부분을, 댓글 또는 메일로 보내주시면 많은 도움이 되겠습니다.
02 22, 2013 14:10 02 22, 2013 14:10


Trackback URL : http://develop.sunshiny.co.kr/trackback/857

Leave a comment

« Previous : 1 : ... 154 : 155 : 156 : 157 : 158 : 159 : 160 : 161 : 162 : ... 648 : Next »

Recent Posts

  1. HDFS - Python Encoding 오류 처리
  2. HP - Vertica ROS Container 관련 오류...
  3. HDFS - Hive 실행시 System Time 오류
  4. HP - Vertica 사용자 쿼리 이력 테이블...
  5. Client에서 HDFS 환경의 데이터 처리시...

Recent Comments

  1. I'm curious to find out what blog... 레깅스룸 03시 26분
  2. 안녕하세요^^ 배그핵
  3. 안녕하세요^^ 도움이 되셨다니, 저... sunshiny
  4. 정말 큰 도움이 되었습니다.. 감사합... 사랑은
  5. 네, 안녕하세요. 댓글 남겨 주셔서... sunshiny

Recent Trackbacks

  1. wedding dj’s in bozeman montana wedding dj’s in bozeman montana %M
  2. important site important site %M
  3. host insurance host insurance %M
  4. why not try here why not try here %M
  5. airbnb homeowners insurance airbnb homeowners insurance %M

Calendar

«   01 2020   »
      1 2 3 4
5 6 7 8 9 10 11
12 13 14 15 16 17 18
19 20 21 22 23 24 25
26 27 28 29 30 31  

Bookmarks

  1. 위키피디아
  2. MysqlKorea
  3. 오라클 클럽
  4. API - Java
  5. Apache Hadoop API
  6. Apache Software Foundation
  7. HDFS 생태계 솔루션
  8. DNSBL - Spam Database Lookup
  9. Ready System
  10. Solaris Freeware
  11. Linux-Site
  12. 윈디하나의 솔라나라

Site Stats

TOTAL 2825900 HIT
TODAY 368 HIT
YESTERDAY 1151 HIT