More Security updates

Firefox (0.9.3) and phpMyAdmin (2.5.7-pl1) were the next packages to be updated on my machines.
I also tweaked some apache settings for this domain (void.gr). I played a bit with ssl support and created some directory directives to protect sensitive data…like the phpmyadmin dir.
example:


<Directory "/foo/bar/lol/phpmyadmin/">
SSLRequireSSL
</Directory>

While playing with apache and SSL I’ve found out that you can’t use different certs for virtual hosts hosted on the same ip/port (link1, link2. I guess that’s why we are asked so many times on the web to validate a cert that looks like it’s coming from another host. They are probably sites hosted on the same machine and wanted both to use ssl, so they chose one of the FQDNs and stuck with it.

I also changed all the urls of this blog to follow the https scheme. Security … Privacy … Unknown words to most people surfing the “Net”.

2 Responses to “More Security updates”

  1. agorf
    August 6th, 2004 | 08:28

    Be advised though that this “forced” (?) security measure breaks the feed parsing engine of many news aggregators (my guess is they cannot connect), including the one I am using.

  2. agorf
    August 6th, 2004 | 20:15

    False alarm. It seems that it was more a BlogLines internal problem.

Leave a reply