background preloader

Stupid htaccess Tricks

Stupid htaccess Tricks
Welcome to Perishable Press! This article, Stupid htaccess Tricks, covers just about every htaccess “trick” in the book, and is easily the site’s most popular offering. In addition to this htaccess article, you may also want to explore the rapidly expanding htaccess tag archive. Along with all things htaccess, Perishable Press also focuses on (X)HTML, CSS, PHP, JavaScript, security, and just about every other aspect of web design, blogging, and online success. If these topics are of interest to you, I encourage you to subscribe to Perishable Press for a periodic dose of online enlightenment ;) General Information [ ^ ] .htaccess Definition 1 ^ Apache server software provides distributed (i.e., directory-level) configuration via Hypertext Access files. Commenting .htaccess Code ^ Comments are essential to maintaining control over any involved portion of code. Important Notes for .htaccess Noobs ^ As a configuration file, .htaccess is very powerful. Performance Issues ^ [S=x] [E=variable:value]

0-day Clothing | T-Shirts for hackers, engineers and geeks extern blog SensePost; The intertubes have been humming lately around a certain NTP feature to gather lists of NTP servers' clients and it naturally grabbed our attention. The humming was started by HD Moore recently where he revealed that it is possible to query NTP servers to get lists of addresses and using the information for fun and profit. He also mentioned that he will be releasing a paper describing all this and how he can create a sizable DDOS using NTP, without giving too much detail about it. Some quick research into NTP(from ww.ntp.org) revealed that NTP servers allow you to perform a bunch of commands that are secondary to time keeping. You can easily play with these using the ntpdc client program eg. listpeers - List the peers(NTP servers) for the time server showpeer - Give time keeping info about a specific peer time server peers - List peers and some basic time keeping info sysstats - Info regarding ntp daemon itself many more... Have data, what now? Files: ntp_monlistza_time_servers

tombenner/nui Zen One: PCI Compliance - Disable SSLv2 and Weak Ciphers According to section 4.1 of the the Payment Card Industry Data Security Standard (PCI-DSS) v1.2, merchants handling credit card data are required to “use strong cryptography and security protocols such as SSL/TLS or IPSEC to safeguard sensitive cardholder data during transmission over open, public networks.” What does this mean? In order to validate your PCI DSS compliance in this area you will need to ensure that your relevant server(s) within your PCI environment are configured to disallow Secure Sockets Layer (SSL) version 2 as well as "weak" cryptography. You are also required to have quarterly PCI security vulnerability scans conducted against your externally facing PCI systems. The SSLv2 Conundrum Does your server support SSLv2? How to test: You will need to have OpenSSL installed on the system that you will perform the tests from. # openssl s_client -ssl2 -connect SERVERNAME:443 If the server does not support SSLv2 you should receive an error similar to the following: How to test:

mattt/rack-push-notification Precision Xtra and Optium Xceed The Xtra/Xceed has been tested by numerous independent reviewers. They all report a high degree of precision and accuracy, although some say precision and accuracy decline when sample concentrations rise above a certain point. One drawback of the reviews is that they mostly look at results in the lower part of the Xtra/Xceed's range. One reviewer summed up the results of several studies like this: Three recent research studies… all gave very similar results and all confirm the excellent accuracy of the Precision Xtra blood ketone system for diagnosing ketosis in dairy cattle. I've seen only two studies that report serious problems. Janssen et al. say the device is very accurate with samples below 6 mmol/L, but once levels go above that point, test strips become saturated and the Xtra/Xceed can report erroneous values between 3 and 6.5 mmol/L. I am skeptical about Janssen et al.'

Ketone Testing - How To Test for Ketones & Ketone Test Levels Ketone testing can be done at home Ketone testing is crucial if you have sustained high blood sugar readings which can often occur if you are ill or you are struggling to keep on top of your diabetes. If your blood sugar is high, it is an indication that you do not have enough insulin in your system (or that the insulin that you do have is not working effectively). There’s a chance that your body will start breaking down protein in order to get some energy. Although your blood is sugary, the cells in your body are not able to use that energy (you need insulin to let the energy in the form of glucose into the cells). Why are ketones produced? Ketones are made when the body breaks down proteins. But long term, ketones can build up. This can be damaging, and is referred to as a state of ketoacidosis, or in diabetes, DKA - specifically Diabetic Ketoacidosis. Where can I get ketone testing kits and sensors? You can also test ketones in your urine. Ketones affect your diabetes Ketone Test Meters

Five Triggered Emails Your eCommerce Business Should Send At Klaviyo, we’re strong believers in more personalized and targeted email marketing. It’s better for consumers because the content they’ll see in their inbox is more relevant to them. It’s better for you because consumers will be more likely to read your emails, less likely to unsubscribe and, ultimately, more likely to make additional purchases or recommend you to a friend. So without further ado, here are five emails you should be sending your customers that are triggered based on their behavior: Win backs are triggered email campaigns designed to “win back” previous customers. If you’re not yet sending these types of emails, the simplest approach is to get a list of all your customers and when they last made a purchase, choose the period of time after which you want to email them and filter out customers who have made a purchase more recently. Once you’ve sent the first campaign, you’ll want to repeat the process at least every month or two.

pagespeed/ngx_pagespeed SciCombinator

Related: