Subject: Re: Firewall positioningCERT paper on firewall security issues and best practices. -improvement/modules/m08.htmlContrary to some answers you may have received:a) never leave a web server where it is not protected (in front of a firewall)b) do not allow inbound connections through a firewall to your internal network (unless you are a security expert and know the risks or you have it checked by a security expert)c) so that leaves you with 1 primary option: get a single firewall and use 3 interfaces: 1 to your internal network, 1 to a DMZ (a semi-secure area that is designed for serving inbound requests) and 1 to the Internet...more complex answers are available but require in-depth knowledge of the situation and the expertise to evaluate the options... Re: Thwarting mass .htaccess crack attempts, how? My personal preference (may not be available or may be different of various unix-flavors, YMMV) is: route add -blackhole 126.96.36.199 127.0.0.1 And *any* packets from the offendee are simply dropped by the kernel. Or, if it is in your purview, similarly at your firewall or router. Apache - premature-script-headers errors At -script-headers Other options: >THE ANSWER ABOUT THIS PROBLEM (to test before the others in listing) , IS:>insert in the first line of the cgi or of the script file the header>#!/bin/ksh or #!/bin/sh because on some server if you don't specify the>variable of shell the script don't start from the web server. Ok, thanks a>lot for all the answers but I have try all and only this answer have>resolved my problem.
If you need bigger tables than 4G (and your operating system supportsthis), you should set the AVG_ROW_LENGTH and MAX_ROWSparameter when you create your table. See section 6.5.3 CREATE TABLE Syntax. You canalso set these later with ALTER TABLE. See section 6.5.4 ALTER TABLE Syntax.
You will need the following:A 32-bit Windows Operating System such as 9x, Me, NT, 2000, or XP.The NT family (NT, Windows 2000 and XP) permits running the MySQL serveras a service. See section 188.8.131.52 Starting MySQL on Windows NT, 2000 or XP.If you want to use tables bigger than 4G, you should install MySQLon an NTFS or newer filesystem. Don't forget to use MAX_ROWS andAVG_ROW_LENGTH when you create the table. See section 6.5.3 CREATE TABLE Syntax.TCP/IP protocol support.A copy of the MySQL binary or distribution for Windows, whichcan be downloaded from : The distribution files are supplied with a zipped formatand we recommend the use of an adequate FTP client with resumefeature to avoid corruption of files during the download process.A ZIP program to unpack the distribution file.Enough space on the hard drive to unpack, install, and create thedatabases in accorandance with your requirements.If you plan to connect to the MySQL server via ODBC, youwill also need the MyODBC driver. See section 8.3 MySQL ODBC Support.184.108.40.206 Installing the BinariesIf you are working on an NT/2000/XP server, logon as a user withadministrator privileges.If you are doing an upgrade of an earlier MySQL installation,it is necessary to stop the server. If you are running the serveras a service, use:C:\> NET STOP MySQLOtherwise, use:C:\mysql\bin> mysqladmin -u root shutdownOn NT/2000/XP machines, if you want to change the server executable(e.g., -max or -nt), it is also necessary to remove the service:C:\mysql\bin> mysqld-max-nt --removeUnzip the distribution file to a temporary directory.Run the `setup.exe' file to begin the installation process.If you want to install into another directory than the default`c:\mysql', use the Browse button to specify yourpreferred directory.Finish the install process.220.127.116.11 Preparing the Windows MySQL EnvironmentStarting with MySQL 3.23.38, the Windows distribution includesboth the normal and the MySQL-Max server binaries.Here is a list of the different MySQL servers you can use:
If you are using Irix Version 6.5.3 or newer mysqld will only be able tocreate threads if you run it as a user with CAP_SCHED_MGTprivileges (like root) or give the mysqld server this privilegewith the following shell command:
When you connect to a MySQL server, you normally should use apassword. The password is not transmitted in clear text over theconnection, however the encryption algorithm is not very strong, andwith some effort a clever attacker can crack the password if he is ableto sniff the traffic between the client and the server. If theconnection between the client and the server goes through an untrustednetwork, you should use an SSH tunnel to encrypt thecommunication.
SHOW COLUMNS lists the columns in a given table. If you specifythe FULL option, you will also get the privileges you have foreach column. If the column types are different from what you expect them tobe based on a CREATE TABLE statement, note that MySQLsometimes changes column types. See section 18.104.22.168 Silent Column Specification Changes.
If you are using Irix Version 6.5.3 or newer, mysqld will be able tocreate threads only if you run it as a user with CAP_SCHED_MGTprivileges (like root) or give the mysqld server this privilegewith the following shell command:
When you connect to a MySQL server, you should use a password. The passwordis not transmitted in clear text over the connection. Password handling duringthe client connection sequence was upgraded in MySQL 4.1.1 to be very secure.If you are using an older version of MySQL, or are still using pre-4.1.1-stylepasswords, the encryptionalgorithm is less strong and with some effort a clever attacker who cansniff the traffic between the client and the server can crack the password.(See section 5.4.9 Password Hashing in MySQL 4.1 for a discussion of the different password handlingmethods.)If the connection between the client and the server goes through anuntrusted network, you should use an SSH tunnel to encrypt the communication. 2b1af7f3a8