John McLear – Page 54 – Founder, Inventor, Creator

How to install mod_rpaf Varnish WordPress Ubuntu

Posted on September 9, 2011September 9, 2012 by primaryt

And the geekiest title of the week goes to me…

Add this line to your varnish VCL in sub_recv:

set req.http.X-Forwarded-For = client.ip;

Grab mod_rpaf:

wget http://ftp.debian.org/debian/pool/main/liba/libapache2-mod-rpaf/libapache2-mod-rpaf_0.6-7_amd64.deb

Install mod_rpaf

dpkg -i libapache2-mod-rpaf_0.6-1_amd64.deb

Enable mod_rpaf:

a2enmod rpaf

Your rpaf config (/etc/apache2/mods-enabled/rpaf.conf) should look awesome like this:

<IfModule mod_rpaf.c>
RPAFenable On
RPAFsethostname On
RPAFproxy_ips 123.123.123.123 10.0.0.2 127.0.0.1
RPAFheader HTTP_X_FORWARDED_FOR
</IfModule>

Note: RPAFproxy_ips is the ips of your varnish cache servers. Varnish is awesome.

Reload varnish and Apache the cool way.

/etc/init.d/varnish reload
/etc/init.d/apache reload

Test it by looking at your remote_addr variable:

print_r($_SERVER);

WordPress Timthumb vulnerability

Posted on September 9, 2011September 9, 2011 by primaryt

I don’t usually blog about vulnerabilities but Timthumb is being exploited all over the place. First off, don’t panic. Your site is probably vulnerable but fixing it is easy. Simply download the timthumb scanner plugin, upload it and then scan your site. Once completed it will patch your site for you and you can get back to work 🙂

Save Your WordPress Site With the Timthumb Vulnerability Scanner and 1-Click Upgrade (pressography.com)
TimThumb security issue with WordPress (blacknight.com)
TimThumb.php Vulnerability Not Only Affecting Themes – Plugins too (vslider) (sucuri.net)
TimThumb Updated To Version 2 (michele.me)
[WordPress] Timthumb Vulnerability Scanner Plugin Checks & Fixes Vulnerable Timthumb script (shoutmeloud.com)

Classblogs

Posted on September 8, 2011 by primaryt

Classblogs has been the hastag and general term we have used for school blogs for a long time. Recently a service has popped up “violating this name space” so I just wanted to let people know that this is the genuine ClassBlogs started by Tom. Enjoy 🙂

Sounds like Glow is on the right path #EduScotICT

Posted on September 8, 2011September 8, 2011 by primaryt

Sounds like Glow and Primary Technology share a similar vision about open technologies. It would be really sad if they say “Yes we want to use open technologies” then adopt Google Docs, let’s hope that doesn’t happen! Please people, try to remember than Open is not the same as Free, open means you have the freedom to do whatever you want, whenever you want with that piece of software.

I find it strange that so many Scottish schools that have access to the Glow blogs service still use PrimaryBlogger? I assume it’s because PrimaryBlogger has a slightly more open feel and ability to be more creative. I guess as Glow is part of a bigger service the government feel they need to attach certain policies and restrictions to it. I don’t know the answer but it would be an interesting discussion to have if you are a Glow user and you use PrimaryBlogger.

If I was to be skeptical about one thing it would be about RM’s ability to manage glow. In my experience RM tend not to consult with other small business’ about best practice when implementing new technology and I haven’t seen much of a commitment from RM to open source. Do you know of any? If so, please prove me wrong!

So I’m interested to see what Glow do, I wont be contributing to the date unless my presence is requested but I will be listening in and looking to see what exciting open-technologies are proposed!

Just finally, I want to give credit to some of the people working in and around Glow from a teaching and learning perspective. Ollie Bray, Derek Robertson, Margaret Vass, John Johnston to name but a few. Keep up the good work one and all and kudos to you!

You cannot compete

Posted on September 7, 2011 by primaryt

Related articles