612Part VRunning ServersRead permissions are not necessary for compiled binaries, such as those written inC or C++, but can be safely added unless there is a need to keep the contents ofthe program secret. A client denied by server configuration error indicates that Apache was config- ured to deny access to the object. Check the configuration files for andsections that might affect the file you are trying to access, remember- ing that settings applied to a path are also applied to any paths below it. You canoverride these by changing the permissions only for the more specific path to whichyou want to allow access. The Directory index forbidden by rule error indicates that Apache could not findan index file with a name specified in the DirectoryIndexdirective and was con- figured to not create an index containing a list of files in a directory. Make sureyourindex page, if you have one, has one of the names specified in the relevantDirectoryIndexdirective, or add an Options Indexesline to the appropriateor section for that object. Premature end of script headers errors can indicate that a script is crashingbefore it finishes. Sometimes, the errors that caused this also show up in the errorlog. When using suexecor suPHP, this error may also be caused by a file ownershipor permissions error. These errors are indicated in /var/log/apache/suexec.logor /var/log/apache/suphp.log. Securing Your Web Traffic with SSL/TLSYou ll want to add security for your server, including your own certificates. Yourdata is important, and so is your capability to pass it along your network or theInternet to others. Networks just aren t secure enough by themselves to protectyour communications. This section examines ways you can help guard them. Electronic commerce applications such as online shopping and banking are generallyencrypted using either the Secure Socket Layer (SSL) or Transport Layer Security(TLS) specifications. TLS is based on version 3.0 of the SSL specifications, so they arevery similar in nature. This similarity, combined with the fact that SSL is older, resultsin the SSL acronym often being used to refer to either variety. For Web connections, the SSL connection is established first, and then normal HTTP communication is tunneled through it. Because SSL negotiation takes place before any HTTP communication, name-basedvirtual hosting (which occurs at the HTTP layer) does not work with SSL. As a conse- quence, every SSL virtual host you configure will need to have a unique IP address. NoteNote32_
We recommend high quality webhost to host and run your jsp application: christian web host services.
This entry was posted
on Thursday, November 8th, 2007 at 12:07 am and is filed under B5.
You can follow any responses to this entry through the RSS 2.0 feed.
You can leave a response, or trackback from your own site.