PUBLIC MARKS with tags applications & apache

A good way to see how your Web applications and server will behave under high load is by testing them with a simulated load. We tested several free software tools that do such testing to see which work best for what kinds of sites. If you leave out the load-testing packages that are no longer maintained, non-free, or fail the installation process in some obscure way, you are left with five candidates: curl-loader, httperf, Siege, Tsung, and Apache JMeter.

This article shows how to install and configure ModSecurity (version 2) for use with Apache2 on a Debian Etch system. ModSecurity is an Apache module that provides intrusion detection and prevention for web applications. It aims at shielding web applications from known and unknown attacks, such as SQL injection attacks, cross-site scripting, path traversal attacks, etc. I want to say first that this is not the only way of setting up such a system. There are many ways of achieving this goal but this is the way I take. I do not issue any guarantee that this will work for you!

La communauté OpenLiberty.org élabore actuellement un code open source visant à optimiser la sécurité et la confidentialité dans les services Web et les applications Web 2.0. Le code source d’OpenLiberty-J peut être téléchargé librement sur OpenLiberty.org. OpenLiberty.org est une communauté de développeurs formée en janvier 2007 pour coordonner les synergies et les travaux de la Liberty Alliance. Elle regroupe des acteurs comme AOL, HP, Intel, Internet2, Sun Microsystems, Symlabs et la communauté OpenSAM. OpenLiberty.org confirme aujourd’hui la diffusion d’OpenLiberty-J, une bibliothèque client Liberty Web Services (ID-WSF 2.0) open source conçue pour "faciliter le développement et accélérer le déploiement d’applications Web 2.0 standardisées et sécurisées." Diffusé aujourd’hui en version beta sous la licence Apache 2.0, le code OpenLiberty-J peut être examiné et téléchargé sur OpenLiberty.org. OpenLiberty-J permet aux développeurs d’applications d’incorporer les fonctions du standard Identity Web Services Framework de Liberty Alliance dans des applications consommatrices d’identité telles que celles présentes dans les architectures orientées services (SOA) d’entreprise, les environnements de réseau social Web 2.0 et les applications client sur les PC et appareils mobiles.

Applications using the LAMP (Linux®, Apache, MySQL, PHP/Perl) architecture are constantly being developed and deployed. But often the server administrator has little control over the application itself because it's written by someone else. This series of three articles discusses many of the server configuration items that can make or break an application's performance. This second article focuses on steps you can take to optimize Apache and PHP. Linux, Apache, MySQL, and PHP (or Perl) form the basis of the LAMP architecture for Web applications. Many open source packages based on LAMP components are available to solve a variety of problems. As the load on an application increases, the bottlenecks in the underlying infrastructure become more apparent in the form of slow response to user requests. The previous article showed you how to tune the Linux system and covered the basics of LAMP and performance measurement. This article focuses on the Web server components, Apache and PHP.