{"id":31,"date":"2004-08-05T20:57:01","date_gmt":"2004-08-05T17:57:01","guid":{"rendered":"http:\/\/void.gr\/kargig\/blog\/?p=31"},"modified":"2004-08-05T20:59:13","modified_gmt":"2004-08-05T17:59:13","slug":"more-security-updates","status":"publish","type":"post","link":"https:\/\/www.void.gr\/kargig\/blog\/2004\/08\/05\/more-security-updates\/","title":{"rendered":"More Security updates"},"content":{"rendered":"<p><a href=\"http:\/\/www.mozilla.org\/products\/firefox\/\">Firefox<\/a> (0.9.3) and <a href=\"http:\/\/www.phpmyadmin.net\/home_page\/\">phpMyAdmin<\/a> (2.5.7-pl1) were the next packages to be updated on my machines.<br \/>\nI also tweaked some apache settings for this domain (void.gr). I played a bit with ssl support and created some directory directives to protect sensitive data&#8230;like the phpmyadmin dir.<br \/>\nexample:<\/p>\n<blockquote><p><code><br \/>\n&lt;Directory \"\/foo\/bar\/lol\/phpmyadmin\/\"&gt;<br \/>\n  SSLRequireSSL<br \/>\n&lt;\/Directory&gt;<br \/>\n <\/code><\/p><\/blockquote>\n<p>While playing with apache and SSL I&#8217;ve found out that you can&#8217;t use different certs for virtual hosts hosted on the same ip\/port (<a href=\"http:\/\/httpd.apache.org\/docs-2.0\/vhosts\/name-based.html\">link1<\/a>, <a href=\"http:\/\/www.modssl.org\/docs\/2.8\/ssl_faq.html#vhosts\">link2<\/a>. I guess that&#8217;s why we are asked so many times on the web to validate a cert that looks like it&#8217;s coming from another host. They are probably sites hosted on the same machine and wanted both to use ssl, so they chose one of the FQDNs and stuck with it.<\/p>\n<p>I also changed all the urls of this blog to follow the https scheme. Security &#8230; Privacy &#8230; Unknown words to most people surfing the &#8220;Net&#8221;.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Firefox (0.9.3) and phpMyAdmin (2.5.7-pl1) were the next packages to be updated on my machines. I also tweaked some apache settings for this domain (void.gr). I played a bit with ssl support and created some directory directives to protect sensitive data&#8230;like the phpmyadmin dir. example: &lt;Directory &#8220;\/foo\/bar\/lol\/phpmyadmin\/&#8221;&gt; SSLRequireSSL &lt;\/Directory&gt; While playing with apache and SSL [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"ep_exclude_from_search":false,"footnotes":""},"categories":[1],"tags":[],"class_list":["post-31","post","type-post","status-publish","format-standard","hentry","category-general"],"aioseo_notices":[],"views":3202,"_links":{"self":[{"href":"https:\/\/www.void.gr\/kargig\/blog\/wp-json\/wp\/v2\/posts\/31","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.void.gr\/kargig\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.void.gr\/kargig\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.void.gr\/kargig\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.void.gr\/kargig\/blog\/wp-json\/wp\/v2\/comments?post=31"}],"version-history":[{"count":0,"href":"https:\/\/www.void.gr\/kargig\/blog\/wp-json\/wp\/v2\/posts\/31\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.void.gr\/kargig\/blog\/wp-json\/wp\/v2\/media?parent=31"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.void.gr\/kargig\/blog\/wp-json\/wp\/v2\/categories?post=31"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.void.gr\/kargig\/blog\/wp-json\/wp\/v2\/tags?post=31"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}