Apache control scripts

I got around to uploading my Apache control scripts to the Linux archive. They are just like the Mac ones inside the wee script pack, but better. As well as Linux/UNIX/etc., they should also work on a Mac, in case you wanted an upgrade for those.

The scripts search in the various locations that Apache (1 & 2) can be found, and so should work for most server setups..

The commands..

Restart Apache*. The most used script.

Start Apache. (Go!!!)

Test Apache. (Test)

Stop Apache. (Halt!)

Test Virtual Hosts

As usual, I've added a ".sh" extension to the files on-site, so the server knows what to do with them; but you can remove that when you get them home; make them quicker to type.

That's it. You can grab them here.

for now..


* This was the first Apache control script I made, and got very used to using it, which partly explains why the other scripts also begin with "r", and not "a", as one would expect. The other part being that "at" would clash with another command, at least on my Slackware box, it does.

cbparser v1.2.2

cbparser, that lovable bbcode parser, has had a small security update.

I got mail about some more potential XSS attack variants (thanks j8!), and I've decided to (at last) kill all style tags from within the posted bbcode. cbparser has so many styles, there's simply no need for users to be rolling their own, and most web masters wouldn't want that anyway.

The upshot is, that as well as the current round-up of style-based XSS attacks, cbparser will be immune to all future style-based XSS attacks. It also means we can lose some code, as individual hacks won't need checking.

I've put together a complete updated package, with css, buttons, etc., and you can grab it from the beta section, here. If I don't get a bag of bugmail, I'll move it over to the regular section after an unspecified number of days, and it will become the regular release version. If you just want to look at the code, do that here.

As always, it's the very latest version running onsite, taking care of the comments, blogs and such, including this very blog entry, so feel free to test these things right here; try before you buy, so to speak, except of course, it's free. Have fun!

for now..


404 v1.9.11

I realized that I don't really use my beta folders as much as I aught to, so I threw the latest version of 404 in there. For all my "little things", I generally I go straight to the release stage (after rigorous testing, and all that), but some things need even longer testing phases, and it's a) not fair to keep this all to myself, and b) you can help.

404 v1.9.11 changes..
  • In the event of the site scan turning up a single match, 404 can now redirect with a proper 301 header, just like the catchers. Most users wouldn't even realize they got a 404. This basically gives you automatic 301 permanent redirects for any pages you move. keep the users and spiders happy!
  • You now can specify the catchers auto-jump method, '301', or old-school meta-refresh, in the preferences.
  • Added scan locking. When 404 is scanning the site, it will place a temporary lock file, to prevent crazy bots and site abusers from running multiple file scans at once, and potentially stressing the server, chewing up resources.
    404 will still display, but with a message telling the user to wait a moment before trying again, rather than the usual search results. Most folk will never see this in action, but it's good to know it's there, preventing potential mishaps.
  • You can now choose to have 404 return matches for directories, so if the user was looking for the non-existant /foo/hell they could get back results for /bar/shell scripts/
  • Fixed the slashes in the corzoogle input (for '' quotes).

There's more.


 ©  2017 « corz.org » 17.1.23  

Welcome to corz.org!

If something isn't working, I'm probably improving it, try again in a minute. If it's still not working, please mail me!