Protecting servers with fail2ban – Apache HTTPd webserver

In the next part of the series, the protection of webservers is explained. In this example I use Apache HTTPd webserver. Similar configurations are also available for e.g. nginx. There are various reasons for protecting the webserver itself (webapplications installed will be described in on of the next posts). Attackers are e.g. scanning the server for vulnariblties or try to attack the server using invalid input.

Continue reading “Protecting servers with fail2ban – Apache HTTPd webserver”

Protecting servers with fail2ban – protect ssh

As the next part of the series, the protection of the most common service SSH is described in this post. Almost every Linux based server will run a version of ssh daemon to be able to login from remote. In this post I will describe how to protect ssh using fail2ban.

Continue reading “Protecting servers with fail2ban – protect ssh”

Tomcat: split catalina_home and catalina_base

Introduction

Catalina_home is the tomcat installation (unzipped archive), catalina_base is the folder of a server instance. By default, catalina_base is set to catalina_home. But when it comes to upgrading Tomcat installation, having the possibility to roll back or to run more than one instance of Tomcat on the same server, it is easier to separate those two folders from each other. Continue reading “Tomcat: split catalina_home and catalina_base”