Apache books

There's plenty of documentation on installing and configuring the Apache web server, but where do you find help for the day-to-day stuff, like adding common modules or fine-tuning your activity logging? That's easy. The new edition of the Apache Cookbook offers you updated solutions to the problems you're likely to encounter with the new versions of Apache.
Written by members of the Apache Software Foundation, and thoroughly revised for Apache versions 2.0 and 2.2, recipes in this book range from simple tasks, such installing the server on Red Hat Linux or Windows, to more complex tasks, such as setting up name-based virtual hosts or securing and managing your proxy server. Altogether, you get more than 200 timesaving recipes for solving a crisis or other deadline conundrums, with topics including:

• Security
• Aliases, Redirecting, and Rewriting
• CGI Scripts, the suexec Wrapper, and other dynamic content techniques
• Error Handling
• SSL
• Performance

This book tackles everything from beginner problems to those faced by experienced users. For every problem addressed in the book, you will find a worked-out solution that includes short, focused pieces of code you can use immediately. You also get explanations of how and why the code works, so you can adapt the problem-solving techniques to similar situations.
Instead of poking around mailing lists, online documentation, and other sources, rely on the Apache Cookbook for quick solutions when you need them. Then you can spend your time and energy where it matters most.

Apache is far and away the most widely used web server platform in the world. This versatile server runs more than half of the world's existing web sites. Apache is both free and rock-solid, running more than 21 million web sites ranging from huge e-commerce operations to corporate intranets and smaller hobby sites. Updated to cover the changes in Apache's latest release, 2.0, as well as Apache 1.3, this useful guide discusses how to obtain, set up, secure, modify, and troubleshoot the Apache software on both Unix and Windows systems. Dozens of clearly written examples provide the answers to the real-world issues that Apache administrators face everyday. In addition to covering the installation and configuration of mod_perl and Tomcat, the book examines PHP, Cocoon, and other new technologies that are associated with the Apache web server. Additional coverage of security and the Apache 2.0 API make Apache: The Definitive Guide, Third Edition essential documentation for the world's most popular web server.

With more than 67% of web servers running Apache, it is by far the most widely used web server platform in the world. Apache has evolved into a powerful system that easily rivals other HTTP servers in terms of functionality, efficiency, and speed. Despite these impressive capabilities, though, Apache is only a beneficial tool if it's a secure one.

To be sure, administrators installing and configuring Apache still need a sure-fire way to secure it--whether it's running a huge e-commerce operation, corporate intranet, or just a small hobby site.

Our new guide, Apache Security, gives administrators and webmasters just what they crave--a comprehensive security source for Apache. Successfully combining Apache administration and web security topics, Apache Security speaks to nearly everyone in the field. What's more, it offers a concise introduction to the theory of securing Apache, as well as a broad perspective on server security in general.

But this book isn't just about theory. The real strength of Apache Security lies in its wealth of interesting and practical advice, with many real-life examples and solutions. Administrators and programmers will learn how to:

• install and configure Apache
• prevent denial of service (DoS) and other attacks
• securely share servers
• control logging and monitoring
• secure custom-written web applications
• conduct a web security assessment
• use mod_security and other security-related modules

And that's just the tip of the iceberg, as mainstream Apache users will also gain valuable information on PHP and SSL/ TLS. Clearly, Apache Security is packed and to the point, with plenty of details for locking down this extremely popular and versatile web server.

Sams Teach Yourself PHP, MySQL® and Apache All in One

 

Fourth Edition

 

Julie C. Meloni

 

Starter Kit

CD-ROM includes a complete starter kit for Windows®, Linux®, and Mac® OS X

 

In just a short time, you can learn how to use PHP, MySQL, and Apache together to create dynamic, interactive websites and applications using the three leading open-source web development technologies.

 

Using a straightforward, step-by-step approach, each lesson in this book builds on the previous ones, enabling you to learn the essentials of PHP scripting, MySQL databases, and the Apache web server from the ground up.

 

Regardless of whether you run Linux, Windows, or Mac OS X, the enclosed CD includes a complete starter kit that lets you install all the software you need to set up a stable environment for learning, testing, and production.

 

Learn how to…

• Install, configure, and set up the PHP scripting language, the MySQL database system, and the Apache Web server
• Get these technologies to work together to create a dynamic, database-backed website
• Interact with MySQL using PHP
• Work with forms and files
• Create a web-based discussion forum or mailing list
• Add a storefront and shopping cart to your site
• Optimize your MySQL databases
• Fine-tune the Apache server’s performance
• Restrict access to your applications
• Set up a secure web server

 

Julie C. Meloni is the technical director for i2i Interactive, a multimedia company located in Los Altos, California. She has been developing web-based applications since the early days of the web, and is the author of several books and articles on web-based programming languages and database topics, including Sams Teach Yourself MySQL in 24 Hours.

 

CD-ROM Includes

• A complete PHP, MySQL, and Apache starter kit for Windows®, Linux®, or Mac® OS X.

 

Category: Web Development

Covers: PHP 5.2, MySQL 5, Apache 2.2

User Level: Beginning

 

• Tomcat is the official reference implementation of Sun's servlet and JSP specifications, and Java developers must test all Web applications on Tomcat to ensure they work as designed
• Boasting more than 40 percent new and updated material, this book covers all the major new features affecting server administration and management
• Explores the additional built-in tools of Tomcat, which help Java developers program more efficiently, and looks at how Apache's other open source servlet/JSP technologies are designed to work with Tomcat
• Features full coverage of Release 6, which supports the latest JSP and servlet specifications: JSP 2.1 and Servlets 2.5
• Addresses solving real-world problems encountered during all phases of server administration, including managing class loaders and connectors, security, shared hosting and clustering, and system testing

Even if you know the Apache web server inside and out, you still need an occasional on-the-job reminder -- especially if you're moving to the newer Apache 2.x. Apache 2 Pocket Reference gives you exactly what you need to get the job done without forcing you to plow through a cumbersome, doorstop-sized reference.
This Book provides essential information to help you configure and maintain the server quickly, with brief explanations that get directly to the point. It covers Apache 2.x, giving web masters, web administrators, and programmers a quick and easy reference solution.
This pocket reference includes:

• Summaries of command-line options, configuration directives, and modules
• Key information about Apache support utilities
• What you need to know about URL rewriting, filters, caching, proxying and security

Whether you manage huge e-commerce operations, corporate intranets, or small personal websites, Apache 2 Pocket Reference is ideal for savvy administrators who no longer need detailed tutorials and just want a convenient, on-the-job reference.

"Do you learn best by example and experimentation? This book is ideal. Have your favorite editor and compiler ready–you'll encounter example code you'll want to try right away. You've picked the right book–this is sure to become the de facto standard guide to writing Apache modules."

–Rich Bowen, coauthor, Apache Administrators Handbook, Apache Cookbook, and The Definitive Guide to Apache mod_rewrite

"A first-rate guide to getting the most out of Apache as a modular application platform–sure to become a must-read for any Apache programmer, from beginner to experienced professional. It builds up carefully and meticulously from the absolute basics, while including chapters on everything from the popular Apache DBD Framework to best practices, security, and debugging."

–Noirin Plunkett, documentation committer to the Apache httpd project, and member of the ASF conference committee

The Only Comprehensive Guide to Developing Apache 2.x Modules and Applications

Apache is more than the world's most popular Web server–it's also an extraordinarily powerful and extensible development platform. Now, ApacheTutor.org's Nick Kew has written The Apache Modules Book, the first start-to-finish, example-rich guide for every developer who wants to make the most of Apache.

Kew begins with detailed, accessible introductions to Apache's architecture and API, then illuminates all the techniques you'll need, from request processing through code security. He brings together the best of both worlds: powerful C-based techniques for accomplishing tasks Perl or PHP can't handle, implemented with tools that deliver all the productivity you'd expect from higher-level languages. Utilizing realistic code samples, Kew introduces techniques documented in no other book-and, often, nowhere else at all.

Coverage includes

• Using Apache Portable Runtime (APR) to streamline C development and avoid its pitfalls

• Leveraging Apache DBD to build applications far more scalable than classic LAMP software

• Working with the latest Apache 2.x features: filter modules, XML support, and smart proxies

• Mastering best practices, from thread safety to multi-platform development

• Utilizing the Apache Authentication Framework

• Tracing and debugging problems in both Apache and your custom modules

Foreword
Preface 
Acknowledgments
About the Author 
Chapter 1 Applications Development with Apache
Chapter 2 The Apache Platform and Architecture
Chapter 3 The Apache Portable Runtime
Chapter 4 Programming Techniques and Caveats
Chapter 5 Writing a Content Generator
Chapter 6 Request Processing Cycle and Metadata Handlers
Chapter 7 AAA: Access, Authentication, and Authorization
Chapter 8 Filter Modules
Chapter 9 Configuration for Modules
Chapter 10 Extending the API
Chapter 11 The Apache Database Framework
Chapter 12 Module Debugging
Appendix A Apache License
Appendix B Contributor License Agreements
Appendix C Hypertext Transfer Protocol: HTTP/1.1
Index

About the Web Site

ApacheTutor.org contains code examples from the book, all designed for easy use and integration into existing applications.

"Ryan Barnett has raised the bar in terms of running Apache securely. If you run Apache, stop right now and leaf through this book; you need this information." --Stephen Northcutt, The SANS Institute The only end-to-end guide to securing Apache Web servers and Web applications Apache can be hacked. As companies have improved perimeter security, hackers have increasingly focused on attacking Apache Web servers and Web applications. Firewalls and SSL won't protect you: you must systematically harden your Web application environment. Preventing Web Attacks with Apache brings together all the information you'll need to do that: step-by-step guidance, hands-on examples, and tested configuration files. Building on his groundbreaking SANS presentations on Apache security, Ryan C. Barnett reveals why your Web servers represent such a compelling target, how significant exploits are performed, and how they can be defended against. Exploits discussed include: buffer overflows, denial of service, attacks on vulnerable scripts and programs, credential sniffing and spoofing, client parameter manipulation, brute force attacks, web defacements, and more.Barnett introduces the Center for Internet Security Apache Benchmarks, a set of best-practice Apache security configuration actions and settings he helped to create. He addresses issues related to IT processes and your underlying OS; Apache downloading, installation, and configuration; application hardening; monitoring, and more. He also presents a chapter-length case study using actual Web attack logs and data captured "in the wild." For every sysadmin, Web professional, and security specialist responsible for Apache or Web application security. With this book, you will learn to *Address the OS-related flaws most likely to compromise Web server security *Perform security-related tasks needed to safely download, configure, and install Apache *Lock down your Apache httpd.conf file and install essential Apache security modules *Test security with the CIS Apache Benchmark Scoring Tool *Use the WASC Web Security Threat Classification to identify and mitigate application threats *Test Apache mitigation settings against the Buggy Bank Web application *Analyze an Open Web Proxy Honeypot to gather crucial intelligence about attackers *Master advanced techniques for detecting and preventing intrusions

Develop and deploy SOAP and RESTful Web Services

• Design and develop web services using contract-first and code-first approaches
• Publish web services using various CXF frontends such as JAX-WS and Simple frontend
• Invoke services by configuring CXF transports
• Create custom interceptors by implementing advanced features such as CXF Interceptors, CXF Invokers, and CXF Features
• The first practical guide on Apache CXF with real-world examples

In Detail

The Apache CXF framework helps you to develop web services using standards based programming model and also provides a flexible deployment model for deploying web services. Developing SOAP and RESTful applications can be made easy by using Apache CXF framework. However, getting started with developing web services using the Apache CXF framework is not easy.

This is the first book that gives details on how to use the Apache CXF framework for developing SOAP and REST web services. It is a hands-on practical guide that simplifies working with CXF framework as it covers all major aspects with real-world examples. The chapters cover the various CXF features in detail and each has systematic steps with practical, simple examples to implement these features on your web services.

The book introduces the Apache CXF framework and its features such as Frontend API, Data Bindings, Transports, Spring-based configuration, and CXF tools. It also has chapters on SOAP and RESTful services. It will help you create RESTful services that support XML as well as the widely accepted Java Script Object Notation (JSON) format. It explains the components of CXF architecture that help developers customize the Apache CXF framework to suit the target application. The book covers both code-first and contract-first approaches for service deployment. You will see how to develop services in a flexible deployment model offered by CXF, unit test them in a stand-alone environment, and finally promote them in an application server environment.

The instructions in this book will help developers to build their application according their requirements by using any of the frontends supported by Apache CXF framework. The various CXF frontend APIs covered in this book provide a wide variety of options in developing and deploying your application.

The book introduces some advanced concepts such as Interceptors and features that will add extra capability to your service component. It will help you take advantage of different transport features offered by the CXF runtime such as HTTP, HTTP(S), and JMS protocols.
Finally, the book mentions various tools that help developers creating web services as well as creating Java and JavaScript-based web services clients which invoke a real-world .NET web service. These tools are standard batch files that can be easily executed from the Windows command shell by following the instructions in the book.

What you will learn from this book

• Become familiar with the different features of Apache CXF architecture and set up the CXF environment
• Develop a simple web service using CXF-based Spring configuration
• Build a web service using contract-first and code-first approaches in simple frontend APIs such as JAX-WS
• Create dynamic web service clients by using various CXF frontend APIs
• Develop web services with different transports by configuring various CXF transports such as HTTP, HTTP(S), JMS, and CXF Local
• Create RESTful services that support JSON and XML as the message formats
• Develop services with features such as Interceptors by implementing advanced CXF features
• Attain configuration and dependency management by integrating web services with the de facto Spring framework
• Unit test POJO services in a stand-alone environment as well as promote applications to the Tomcat container for production ready deployments
• Speed-start developing web services by using CXF tools effectively
• Basics of Spring framework and IOC container for readers who are not acquainted with Spring framework

Table of contents

Chapter 1: Getting Familiar with CXF revisits web service concepts and provides an introduction to CXF framework and its usage, and prepares the CXF environment for the following chapters. By the end of this chapter the reader will be able to understand the core concepts of CXF.

Chapter 2: Developing a Web Service with CXF focuses on getting the reader quickly started with the CXF framework by developing a simple web service and running it under the Tomcat container. By the end of this chapter the reader will be able to develop a simple web service using CXF.

Chapter 3: Working with CXF Frontends illustrates the use of different frontends, like JAX-WS and CXF simple fronted API, and shows how to apply code-first and contract-first development approaches for developing web services. We will look at how to create dynamic web service clients, the use of web service context, and how to work directly with XML messages using Provider and Dispatch implementation. By the end of this chapter the reader will be able to apply different frontends to develop a web service.

Chapter 4: Learning about Service Transports explains basic transport protocols for a service and shows you how to configure HTTP, HTTP(s), JMS, and Local protocol for web services communication. You will get introduced to the concept of HTTP conduit, which enables the client program to apply policies or properties to HTTP and HTTPs protocols, and how to generate a crypto key and a key store for HTTPs based service communication. You will learn how to use JMS protocol for web services communication and how to facilitate web services message exchange using CXF Local service transport. By the end of this chapter the reader will be able develop services with different transports.

Chapter 5: Implementing Advanced Features will explain advanced concepts using CXF Features, Interceptors, and Invokers, and how to integrate these concepts in existing applications. By the end of this chapter the reader will be able develop services with features like Interceptors and Invokers.

Chapter 6: Developing RESTful Services with CXF explains the concept of REST technology and JAX-RS specifications, how CXF realizes the JAX-RS specification, and demonstrates additional features for developing enterprise RESTful services. We will look at how to design, develop, and unit test the RESTful Service by taking a real world example using CXF JAX-RS implementation. You will also look at how to enable exception handling for RESTful services. By the end of this chapter the reader will be able to design, develop, and unit test the RESTful service.

Chapter 7: Deploying RESTful Services with CXF will explain how to deploy REST services in a container like Tomcat using Spring configuration, and how to test out the various operations exposed by the RESTful application using CXF RESTful client API and using a web service development tool. We will look at how to enable JSON message support, and logging support for RESTful applications using CXF framework. By the end of this chapter the reader would be able utilize various CXF features for developing RESTful services and how to leverage Spring configuration for deploying RESTful service in the tomcat container.

Chapter 8: Working with CXF Tools will explain some of the commonly used CXF tools that assist us in web services development. We will look at how to invoke a real world .NET service over the internet using a Java client and JavaScript, create web service implementation from WSDL files, generate WSDL files from web service implementation, and validate the WSDL file for compliance. By the end of this chapter the reader will be able to use different CXF tools to develop a service.

Appendix A : Getting Ready with Code Examples deals with how to set up the CXF environment, provides details on how the source code for each chapter is organized, and shows how to run the source code examples using the ANT tool and Maven Tool.

Appendix B: Getting Started with Spring provides an explanation of the basics of the Spring framework and IoC concepts, along with an end-to-end example which utilizes Spring IoC concepts. By the end of this Appendix chapter the reader will have a good understanding of Spring capabilities used in the context of CXF web services development in this book.

Approach

This book provides a quick start in developing web services using the open source Apache CXF framework. Each chapter uses illustrations from an Order Processing Application and all the code examples are built using the ANT tool. These practical, simple, and easy-to-work-with illustrations are accompanied by step-by-step instructions.

As a developer you can take advantage of these practical scenarios to understand the CXF framework and also make use of them in real-life applications. After reading this book, you will be able to develop and deploy services using the CXF framework.

Who this book is written for

This book is for developers who want to design and develop SOAP and RESTful services using Apache CXF framework and leverage various CXF features for service development. It is ideal for developers who have some experience in Java application development as well as some basic knowledge of web services, but it covers some of the basic fundamentals of web services and REST to get you acquainted with these technologies before using these concepts to develop services using the CXF framework.

"...a behemoth of a resource for everything you ever wanted to know about Apache." — Doug Schasteen, member, Kansas City's PHP User Group

"This is by far the best ‘know all, end all’ reference, bar none. My hat goes off to Peter Wainwright and Apress for opening up a whole new world to me." — Eric Wolf (a.k.a. "nawlej"), Codewalkers.com This book aims to teach you everything you need to know to build, install, and configure every aspect of Apache, the world's most popular Web server. Two versions of Apache are now available. Apache 1.3 is still widely used and is continuously updated. Apache 2 offers new and powerful features, such as multi-processsing modules and filters, as well as a revised and expanded build system for compiling Apache from source. This book comprehensively covers both server versions, presenting up-to-date information and examples, and highlighting variations bettween the two releases in context. In addition, this book is organized to provide solutions to common problems. It answers the questions that administrators like you typically ask, without requiring that you know the name of a specific Apache module or directive beforehand. This book also demonstrates multiple solutions to a problem, and contrasts the benefits and drawbacks of each approach. After reading Pro Apache, you'll know not only how to get the results you want, but also why a solution works the way it does. Finally, this book examines how to accomplish more advanced configurations, where individual features must cooperate with each other intelligently. Now in its third edition, the expertise found in Pro Apache makes it the definitive guide to harnessing the power of Apache safely and securely.