Highest Voted 'web-server' Questions - Server Fault Stack Exchange

36

votes

8 answers

How to reduce memory usage on a Unix webserver

I'm currently using a Joyent Accelerator to host my webapps, and it's working fine, however I need to reduce costs so I'm downgrading my current plan and that imposes some new memory limits (256M rss, 512M swap). I wasn't too far over them…

asked Jun 06 '09 at 12:27

lima

807
1
9
14

35

votes

7 answers

getpwnam("www") failed in /etc/nginx/nginx.conf

I copied the nginx.conf sample onto my ubuntu 12.04 box (I don't know where to put the other conf files. I'm an nginx noob). When I try to start nginx I get the following error: abe-lens-laptop@abe:/etc$ sudo service nginx start Starting nginx:…

linux nginx web-server

asked Mar 10 '14 at 21:50

bernie2436

581
2
6
9

35

votes

2 answers

Any disadvantage to short DNS TTL?

domain-name-system web-server hosting web ttl

asked Jan 24 '11 at 03:38

webnat0

623
2
8
13

34

votes

7 answers

How to best defend against a "slowloris" DOS attack against an Apache web server?

Recently a script called "slowloris" has gained attention. The basic concept of what slowloris does is not a new attack but given the recent attention I have seen a small increase in attacks against some of our Apache websites. At the moment there…

apache-2.2 web-server denial-of-service

asked Jun 26 '09 at 18:03

KPWINC

11,394
3
37
45

34

votes

1 answer

How to disable http basic auth in nginx for a specific ip range?

I'm developing an application with facebook login. So far it's not public and is protected by http basic auth in nginx. Is it possible to disable http auth for facebook's ip range so that we can have our tester test the facebook capabilities as…

nginx web-server ip-address http-basic-authentication

asked Mar 02 '11 at 14:16

VoY

1,275
2
11
9

33

votes

7 answers

Why is Nginx so fast?

How does a site like rambler serve dynamic content so fast? Even faster than Yahoo (which has a server in my country- SE Asia; rambler does not). Is this purely Nginx’s capability? Where should I be looking into to learn about such capabilities? …

apache-2.2 web-server nginx

asked Nov 20 '09 at 14:47

Quintin Par

4,373
11
49
72

32

votes

2 answers

Web gardens... are they good or bad or what?

Are there any downsides to giving Application Pools multiple Worker Processes in IIS? They seem really easy to enable and (almost) everything I’ve read seems to suggest they’re good... so why doesn’t IIS give each App Pool 10+ Worker Processes?…

web-server iis

asked Nov 05 '09 at 12:26

Nai

743
1
6
24

31

votes

5 answers

Linux hardening - web servers

What are your checklist/routine when setting up a Linux web server? What do you recommend to achieve maximum security? Is there any preferred way to perform repeated maintenance?

linux security web-server

asked May 07 '09 at 18:38

pestaa

477
7
10

31

votes

8 answers

Securing PHP webservers

PHP applications have a reputation for higher than average security problems. What configuration techniques do you use for making sure the application is secure as possible? I'm looking for ideas like: Using Hardened PHP/Suhosin Using…

linux apache-2.2 security php web-server

asked Jun 06 '09 at 09:26

David Pashley

23,497
2
46
73

28

votes

4 answers

How do I disable tomcat caching? I'm having weird static file problems

How do I prevent tomcat from caching? I have css and basic html files that I load and use via ajax, and unless I restart tomcat, the changes do not seem to reflect. Different machines, different browsers, and I don't receive the updated…

tomcat cache web-server

asked Jul 13 '09 at 23:49

Stefan Kendall

1,079
3
17
33

27

votes

3 answers

Why are NginX and Lighttpd not affected by Slowloris?

I am investigating the vulnerability to Slowloris and I think I understand how and why this sort of attack works. What I don't understand is why Lighttpd and NginX are not affected (according to the same article as linked above). What do they make…

apache-2.2 web-server lighttpd denial-of-service malware

asked Jun 17 '11 at 16:13

The Shurrican

2,240
7
39
60

27

votes

11 answers

How can I find out if a port is opened or not?

I have installed Apache server on my Windows 7 computer. I was able to display the default index.php by typing http://localhost/ in the address line of my browser. However, I am still unable to see this page by typing IP address of my computer…

windows-7 web-server firewall port

asked Feb 25 '10 at 16:17

Roman

2,569
10
32
32

26

votes

6 answers

What are the advantages of putting secret values of a website as environment variables?

The devops guidelines at https://12factor.net/config suggest to put website secrets (database passwords, api keys, etc.) into environment variables. What advantages does that have instead of using text files (JSON, XML, YAML, INI, or similar)…

web-server configuration website environment-variables

asked Jan 16 '18 at 16:30

Aidas Bendoraitis

1,465
2
14
17

26

votes

6 answers

Nginx startup fails ssl no such file or directory

Here is the error I'm getting: Reloading nginx configuration: nginx: [emerg] SSL_CTX_use_certificate_chain_file("/path/to/cert.pem") failed (SSL: error:02001002:system library:fopen:No such file or directory error:20074002:BIO…

nginx debian web-server

asked Sep 08 '13 at 22:13

tgoza

363
1
3
5

26

votes

1 answer

What are the basics of running a Web Server?

This is a proposed Canonical Question about Beginning Web Server Administration. Assuming that you are a beginning SysAd, are new to WebOps, or a small team with little or no experienced Web Server SysAd support (and cannot afford it right now),…

web-server

asked Apr 08 '13 at 13:07

gWaldo

11,957
8
42
69

Questions tagged [web-server]