Bitnami DokuWiki

/index.php

• added newsblock
• removed hard links to http://www.aoe.vt.edu and replaced with /…

/news.index.php

• removed hard link to http://www.aoe.vt.edu/calendars/… with /calendars/…

/www/common/include/head_foot.inc.php

• removed hard links to http://www.aoe.vt.edu/…

/www/people/

• replaced index.php with indexNew.php

/www/common/include/head_foot.inc.php

• added gateway-horizontal template code
  • search inserted to just before END HEADER close div tag so it will be on the unit_header image. (after line 58 of original gateway-horizontal.
  • BEGIN SEARCH to END SEARCH commented out. (lines 67-87)
  • <div id=“main”>, <div id=“content”> moved to after sub-header for

<HTML>
<HEAD><TITLE>PHP INFO</TITLE></HEAD>
<BODY>
<?php phpinfo(); ?>
<hr>
<?php
var_dump(gd_info());
?>
<hr>
<?php var_dump($HTTP_GET_VARS); ?>
<hr>
<?php var_dump($_GET); ?>
</BODY>
</HTML>

for http://www.aoe.vt.edu/~stedwar1/test

## make sure nobody gets the htaccess files
<Files ~ "^[\._]ht">
    Order allow,deny
    Deny from all
    Satisfy All
</Files>

## change to secure pages
RewriteEngine On
RewriteCond %{HTTPS} off
RewriteRule (.*) https://%{HTTP_HOST}%{REQUEST_URI}

## password protect the page and change to secure page for transmission of password
SSLRequireSSL
ErrorDocument 403 https://www.aoe.vt.edu/~stedwar1/test/index.html
AuthUserFile /path to /.htpasswd
AuthName Steve
AuthType Basic
require valid-user
## the following can specify users in the .htpasswd file
# require user stedwar1
# require user lscharf

## Restrict and deny access to ip addresses, or domain names
## vt.edu only works if DNS returns a hostname and domain name
Order allow,deny
Allow from vt.edu
#Allow from 128.173.
Allow from 198.82.
#Deny from rougedomain.vt.edu

http://www.cyberciti.biz/faq/mysql-reset-lost-root-password/

/etc/init.d/mysqld stop
vi /root/mysql.reset.sql

UPDATE mysql.user SET Password=PASSWORD('YOUR-NEW-MYSQL-PASSWORD') WHERE User='root';
FLUSH PRIVILEGES;

mysqld_safe --init-file=/root/mysql.reset.sql &
killall mysqld
/etc/init.d/mysqld start

mysql_upgrade -u root -p

ssh user@webhost.com tail -f /home/user/logs/http/access.log | logstalgia -

yum install openldap-devel cyrus-sasl-devel

Add these lines to /etc/openldap/ldap.conf

TLS_CACERT /etc/openldap/cachain_edauth.pem
TLS_CACERTDIR /etc/openldap/cacerts

Add this file: /etc/openldap/cachain_edauth.pem contents here:http://www.pki.vt.edu/gettingstarted/vtc1sca/vtca_cachain.pem

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

  AuthType Basic
  AuthName "Restricted Directory"
  AuthUserFile /web/users
  AuthGroupFile /web/groups
  Require group admin

  <LimitExcept POST GET>
  Require valid-user
  </LimitExcept>

<Files ~".*\.php$">
Order deny,allow
Deny from all
</Files>

Notes for Updating the RSS feed with a summary and automatically writing the information to the RSS file.

First the summary field has to be added in the newsadmin.php file. This also has to be added to the editnews.php 
file.

The following code added the field:

	newsadmin.php:
	
	<tr><th align="right">Summary for RSS<br><font size="1">(text or html)</font></th>
		<td><textarea name="summary" cols="70" rows="10"></textarea>
		</td></tr>
		
	editnews.php:
	<tr><th align="right">Summary for RSS<br><font size="1">(text or html)</font></th>
    	<td><textarea name="summary" cols="70" rows="10"><?php echo $myrow[5]?></textarea>
        </td></tr>
		
		
Now create a column in the database for the summary field.
	mysql -p -u root
	use newsdb;
	alter table news add summary text;
	alter table news add updated int(1);

Add the lines in addnews.php and updatenews.php to write the summary section into the database:
	updatenews.php
		$sql  = "UPDATE news SET date='$date', title='$title', content='$content', summary='$summary',imageurl='$imageurl', updated='1'";
		
	addnews.php
		$sql  = "INSERT INTO news(date,title,content,summary,imageurl)";
        $sql .= " values('$date', '$title', '$content', '$summary', '$imageurl')";
	
	
	
Create a file in /common/include called writerss.inc.php
Here are the contents of the file:
	
<?php

#include_once("include/aoe_mysql.inc.php");

#This recreates the rss feed by opening the old rss feed file in write mode, delete it's contents,
#then looping the database and recreating the file.
#Author:	Jason Salyers
#Date:		06/05/2009

function recreate_rss_feed()
{
	$fp = fopen( "/www/aoe-html/news/aoerssfeed2.rss", w );
	#Write the beginning of the rss file
	fwrite( $fp, "<?xml version=\"1.0\" ?>\n");
        fwrite( $fp, "<rss version=\"2.0\">\n");
        fwrite( $fp, "\n\n" );
        fwrite( $fp, "<channel>\n");
        fwrite( $fp, "<title>AOE News Page</title>\n" );
        fwrite( $fp, "<link>\n" );
        fwrite( $fp, "http://www.aoe.vt.edu/news/news.php\n");
        fwrite( $fp, "</link>\n\n");
        fwrite( $fp, "<description>AOE News</description>\n\n\n");

	#Loop the data base and write each article
	$db = aoe_mysql_connect_rw();
	mysql_select_db("newsdb", $db );

	$sql = "SELECT * FROM news order by date desc, id desc";
	$result = mysql_query($sql,$db);
	while ( $myrow = mysql_fetch_row($result)) {
		fwrite( $fp, "<item>\n" );
		fwrite( $fp, "<title>$myrow[2]</title>\n");
		fwrite( $fp, "<link>http://www.aoe.vt.edu/news/news.php</link>\n");
		fwrite( $fp, "<description>$myrow[5]</description>\n");
		$st = $myrow[1];
		$updated = $myrow[6];
		$pd = format_pub_date( $st, $updated );
		fwrite( $fp, "<pubDate>$pd</pubDate>\n");
		fwrite( $fp, "</item>\n\n");
		if ( $updated != 0 ) {
			$sql = "update news set updated=0 where id=$myrow[0]";
			mysql_query($sql,$db);
		}
	}


	#Write the end of the file
	fwrite( $fp, "</channel>\n");
	fwrite( $fp, "</rss>\n");
	fclose( $fp );

	#Close it out and exit
}

function format_pub_date( $stamp, $updated )
{
	$toReturn = "";
	
	if ( $stamp == "" ) {
		return $toReturn;
	}

	if ( strlen($stamp) != 10 ) {
		return $toReturn;
	}

	$yr = substr( $stamp, 0, 4 );		#get the year out of the stamp
	$mo = substr( $stamp, 5, 2 );		#get the month
	$da = substr( $stamp, 8, 2 );		#get the day

	if ( $updated != 0 )
	{
		$mn = rand(0,59);
		$hr = rand(0,23);
		$ts = mktime( $mo, $da, $yr );
	}
	else
		$ts = mktime( 0, 0, 0, $mo, $da, $yr ); #get the UNIX timestamp for the file for the rss feed

	$toReturn .= date(DATE_RSS, $ts );
	return $toReturn;
}
?>



This file needs to be included in addnews.php and updatenews.php so the function recreate_rss_feed() can be called.
updatenews.php automatcally sets the updated field in the database, so when the script runs it checks for this field not being 0.
If it's not 0, it gives it the current timestamp instead of 00:00:00, this updates it in rss.

In order for this to open the rss feed file, for now that file has to be owned by apache and owner writable. This may
pose a security risk. However, I am trying to find a way to open this as another user.

This file has to be added into the list of files that can access the database as well as in the database that lists those files.

• faculty.php? fac_id
• ?selfimageresize
• news/month/php?monthcode
• news/seminardetails.php?id
• button.php?xsize ysize button text
• /news/events.php?eventid

http://www.linuxconfig.org/apache-web-server-ssl-authentication

Connection attempts using mod_proxy:

  81.88.124.30 -> 64.12.202.1:443: 1 Time(s)

[root@bacchus ~]# grep 81.88.124 /var/log/httpd/access_log.1
81.88.124.30 - - [21/May/2010:22:38:31 -0400] "GET http://www.yahoo.com/ HTTP/1.1" 200 20767
81.88.124.30 - - [21/May/2010:23:19:17 -0400] "CONNECT 64.12.202.1:443 HTTP/1.0" 200 20751

Password protection can be applied to folders in Apache by adding .htaccess and .htpasswd files for basic authentication. Or, digest authentication can be implemented which will pass hashes of the password. SSL should be implemented to protect from casual sniffing of the password.

http://httpd.apache.org/docs/1.3/howto/auth.html

http://home.golden.net/htaccess.html

http://httpd.apache.org/docs/1.3/howto/auth.html#digest

http://www.widexl.com/tutorials/htaccess.html

.htaccess

[stedwar1@hephaistos ~]$ cat /home/facultystaff/stedwar1/Webpages/Steve/.htaccess
## make sure nobody gets the htaccess files
<Files ~ "^[\._]ht">
    Order allow,deny
    Deny from all
    Satisfy All
</Files>

RewriteEngine On
RewriteCond %{HTTPS} off
RewriteRule (.*) https://%{HTTP_HOST}%{REQUEST_URI}

SSLRequireSSL
ErrorDocument 403 https://www.aoe.vt.edu/~stedwar1/Steve/

AuthUserFile /home/facultystaff3/stedwar1/.htpasswd
AuthName Steve
AuthType Basic

## only allow users that exist in the .htpasswd file
require valid-user
## or specify users in the password file
# require user stedwar1
# require user lscharf

Generate the htpasswd file with:

htpasswd -s .htpasswd user

.htpasswd

[stedwar1@hephaistos ~]$ cat .htpasswd
stedwar1:{SHA}L3BVYedbebadcC7PT9zOdorKkPU=
lscharf:Redbebadv/SeU
jes2850:tHedbebad6iho
leifur:{SHA}UwTVedbebadgOYk8tFQryD3HEEg=

Digest authentication is similar, but uses

AuthType Digest

and a corresponding htdigest file (in this example .htpasswd)

AuthDigestFile does not work with my version of apache, but AuthUserFile generated by htdigest does work.

.htaccess

[stedwar1@hephaistos sandbox]$ cat .htaccess
## make sure nobody gets the htaccess files
<Files ~ "^[\._]ht">
    Order allow,deny
    Deny from all
    Satisfy All
</Files>

RewriteEngine On
RewriteCond %{HTTPS} off
RewriteRule (.*) https://%{HTTP_HOST}%{REQUEST_URI}

SSLRequireSSL
ErrorDocument 403 https://www.aoe.vt.edu/~gbyun/Konkuk

AuthUserFile /home/facultystaff/gbyun/.htpasswd
#AuthDigestFile /home/facultystaff/gbyun/.htdigest
AuthName "Konkuk"
AuthDigestDomain /Konkuk/ https://www.aoe.vt.edu/~gbyun/Konkuk/
AuthDigestNonceLifetime 300
AuthType Digest

#require valid-user
require user aoeuser

generate the password digest file with:

htdigest -c .htpasswd Konkuk aoeuser

.htpasswd

[stedwar1@hephaistos sandbox]$ cat .htpasswd
aoeuser:Konkuk:2bdcd42a3e38bc12254552311611d94a

A solution was found on 6/9/2010.

The current version of the web server, Server version: Apache/2.2.3, includes by default a setting in httpd.conf that specifies unicode translation to UTF-8.

Here is an excerpt of the config file as specified by Apache:

...
#
# Specify a default charset for all content served; this enables
# interpretation of all content as UTF-8 by default.  To use the
# default browser choice (ISO-8859-1), or to allow the META tags
# in HTML content to override this choice, comment out this
# directive:
#

AddDefaultCharset UTF-8

...

Dr Brown has a web page created with a Microsoft Office Product, which seems to like “Windows-1252” character encoding.

One can experiment with these settings in Firefox using: View Menu, Character Encoding.

www.vt.edu uses UTF-8, as a default, so AOE will also. In order to work around the Microsoft induced problem, add this line to an .htaccess file in the directory where the Microsoft created documents are located and the Web server will override the default Character Encoding.

.htaccess

AddType "text/html; charset=Windows-1252" htm
AddType "text/html; charset=Windows-1252" html

The articles I found are all the reverse problem with the Web server not supporting UTF-8. I used the following article in reverse to find a solution.

Reference: http://www.i18nguy.com/markup/serving.html#tip01

cat /var/log/httpd/access_log|awk '/myadmin/ {IGNORECASE = 1;print $1}'|sort|uniq|awk '{print "-A RH-Firewall-1-INPUT -s "$1" -j LOG --log-level info --log-prefix \"FIREWALL-PMA-DROPPED \""} {print "-A RH-Firewall-1-INPUT -s "$1" -j DROP"}'

testencoding.html

<pre>
&#x3c;script&#x3e;alert('test 2-not encoded')&#x3c;/script&#x3e;
</pre>
<script>alert('test 2-not encoded')</script>
<br>
<br>
<pre>
&nbsp;&nbsp;&amp;lt;script&amp;gt;alert('test 1-character entity')&amp;lt;/script&amp;gt;
</pre>
<br>
&lt;script&gt;alert('test 1-character entity')&lt;/script&gt;
<br>
<br>
<pre>
&nbsp;&nbsp;&amp;#x3c;script&amp;#x3e;alert('test 3-hex encoded')&amp;#x3c;/script&amp;#x3e;
</pre>
<br>
&#x3c;script&#x3e;alert('test 3-hex encoded')&#x3c;/script&#x3e;
<br><hr>
Some good charater entity encodings:
<pre> &amp; --&gt; &amp;amp;
 &lt; --&gt; &amp;lt;
 &gt; --&gt; &amp;gt;
 " --&gt; &amp;quot;
 ' --&gt; &amp;#x27;     &amp;apos; is not recommended
 / --&gt; &amp;#x2F;     forward slash is included as it helps end an HTML entity

</pre>
<a href=http://en.wikipedia.org/wiki/Character_encodings_in_HTML>http://en.wikipedia.org/wiki/Character_encodings_in_HTML</a>

convert -strip -geometry <horizontal dim> <input file> <output file>
cd <images dir>
mkdir 52 185 240 490
for i in `ls` ; do for j in 52 185 240 490; do convert -strip -geometry $j $i $j/$i; done; done;

or, to put them all in the same directory with different names:

for i in `ls *.jpg` ; do for j in 52 185 240 490; do convert -strip -geometry $j $i ./converted/`basename $i .jpg`-$j.jpg ; done; done;

grep 3./Mar/2011 /var/log/httpd/access_log |grep -v 404|awk '{a[$7] += $10} END {for (i in a) print a[i]", "i}' |sort -n