1... 2... 3AuthType Basic 4AuthName "Development Area" 5AuthUserFile /var/www/sites/.htpasswd 6<RequireAny> 7Require ip 19.233.95.152 8Require ip 31.169.217.174 9Require ip 33.202.255.41 10Require ip 31.175.111.184 11Require ip 51.209.11.159 12Require ip 129.162.144.55 13Require valid-user …

1AuthType Basic 2AuthName "Development" 3AuthUserFile /var/www/sites/.htpasswd 4Require valid-user

1<VirtualHost *:443> 2ServerName example.com 34SSLEngine on 5SSLCertificateFile /etc/httpd/conf.d/ssl/2017-example.com.crt 6SSLCertificateKeyFile /etc/httpd/conf.d/ssl/2017-example.com.key 7SSLCertificateChainFile /etc/httpd/conf.d/ssl/2017-example.com.bundle.crt 8910ProxyPreserveHost On 1112ProxyPass / …

When a user visits your website, the above header will load first and the expiration time is 2 years (63072000 in seconds). 1# Optionally load the headers module: 2LoadModule headers_module modules/mod_headers.so 3<VirtualHost 67.89.123.45:443> 4Header always set Strict-Transport-Security “max-age=63072000; …

Generic way to do it but would result into duplicate URLs, e.g. https://example.com & https://www.example.com 1RewriteCond %{HTTPS} off 2RewriteCond %{HTTP:X-Forwarded-Proto} !https 3RewriteRule ^(.*)$ https://%{HTTP_HOST}%{REQUEST_URI} [L,R=301] To avoid the duplicate URLs, do the following: 1## 1. Redirect all …

bruteforce method - remove and replace /etc/nginx-cache Tool (untested) - https://github.com/perusio/nginx-cache-purge

Add the following to the vhost: 1location ^~ /.well-known/ { 2log_not_found off; 3}

1httpd -t -D DUMP_MODULES

1... 2... 3LogFormat "%h %l %u %t \"%r\" %>s %b \"%{Referer}i\" \"%{User-Agent}i\" %{cf-ipcountry}i" cloudflare_custom 4CustomLog /var/log/httpd/site.example.com-cloudflare_custom.log cloudflare_custom 5... 6... See details in …

Check if php-fpm service is up Check if being listened to by nginx (for CentOS, look for "listen" in /etc/php-fpm.d/www.conf) Adjust nginx vhost (fastcgi_pass) when necessary (example below) 1fastcgi_pass 127.0.0.1:9000;