


Tutorial on setting up Apache, php, osx10.9.2apache_PHP on MAC OSX10.9.2
Build Apache, php, osx10.9.2 on MAC OSX10.9.2apache
mac osx10.9.* comes with apache, php
Apache Configuration
1- Start
sudo apachectl start
After startup, visit http://localhost/ and you should see the "It works!" initial page,
vi /etc/apache2/httpd.conf
You can see the following code snippet at line 197:
<Directory "/Library/WebServer/Documents"> # # Possible values for the Options directive are "None", "All", # or any combination of: # Indexes Includes FollowSymLinks SymLinksifOwnerMatch ExecCGI MultiViews # # Note that "MultiViews" must be named *explicitly* --- "Options All" # doesn't give it to you. # # The Options directive is both complicated and important. Please see # http://httpd.apache.org/docs/2.2/mod/core.html#options # for more information. # Options Indexes FollowSymLinks MultiViews # # AllowOverride controls what directives may be placed in .htaccess files. # It can be "All", "None", or any combination of the keywords: # Options FileInfo AuthConfig Limit # AllowOverride None # # Controls who can get stuff from this server. # Order allow,deny Allow from all </Directory>
cd /Library/WebServer/Documents
It Works content is in index.html.en This is the default page of apache
2- Stop/Restart
sudo apachectl stop
sudo apachectl restart
3- Create a personal site directory
cd ~
mkdir Sites
echo "helloWorld" >> index.html
sudo apachectl restart
Then visit http://localhost/~shelley/ and you should be able to see the initial page of the personal directory of "helloWorld" (Note: ~shelley needs to be replaced with ~your username )
If failed
sudo vi /etc/apache2/users/Guest.conf
<Directory "<span>/Users/shelley/Sites</span>"> Options Indexes MultiViews AllowOverride None Order allow,deny Allow from all </Directory>
Why must it be the Sites directory name?
vi /etc/apache2/extra/httpd-userdir.conf
Line 10
# Settings for user home directories # # Required module: mod_userdir # # UserDir: The name of the directory that is appended onto a user's home # directory if a ~user request is received. Note that you must also set # the default access control for these directories, as in the example below. # UserDir Sites # # Users might not be in /Users/*/Sites, so use user-specific config files. # Include /private/etc/apache2/users/*.conf <IfModule bonjour_module> RegisterUserSite customized-users </IfModule>
4- Start virtual host
By default, Apache’s virtual host function is turned off
sudo vi /etc/apache2/httpd.conf
Release comments
#Virtual hosts #Include /private/etc/apache2/extra/httpd-vhosts.conf
Modify file
sudo vi /etc/apache2/extra/httpd-vhosts.conf
Similar to the following
NameVirtualHost *:80 <VirtualHost *:80> DocumentRoot "/Users/shelley/Sites" ServerName www.shelleymyl.com ErrorLog "/Users/shelley/Sites/log/error.log" CustomLog "/Users/shelley/Sites/log/access.log" common <Directory /> Options Indexes FollowSymLinks MultiViews AllowOverride None Order deny,allow Allow from all </Directory> </VirtualHost>
5- URL forwarding
Open httpd.conf first and make sure the following two lines are not commented out:
LoadModule proxy_module libexec/apache2/mod_proxy.so LoadModule proxy_http_module libexec/apache2/mod_proxy_http.so
Then add
at the end of httpd.confProxyPass /HelloWorldApp http://localhost:8080/HelloWorldApp/<br />ProxyPassReverse /HelloWorldApp http://localhost:8080/HelloWorldApp/
Accessing http://localhost/HelloWorldApp, http://ip/HelloWorldApp, http://www.shelleymyl.com/HellpWorldApp in this way is equivalent to accessing http://localhost:8080/HelloWorldApp
6- Port Forwarding
Suppose there is an application http://x.x.x.x:8080/ on the server. If you want to access it directly through a domain name like http://www.shelleymyl.com, you need to do port forwarding and still open httpd.conf
LoadModule proxy_connect_module modules/mod_proxy_connect.so LoadModule proxy_ftp_module modules/mod_proxy_ftp.so
On the basis of "5. URL forwarding", open these two items
Then modify
sudo vi /etc/apache2/extra/httpd-vhosts.conf
NameVirtualHost *:80 <VirtualHost *:80> ProxyPreserveHost On ServerName www.yjmyzz.com ProxyPass / http://www.yjmyzz.com:8000/ ProxyPassReverse / http://www.yjmyzz.com:8000/ ServerAdmin webmaster@localhost </VirtualHost>
This is equivalent to forwarding port 80 to port 8080
PHP Configuration
The configuration of PHP is very simple, just one thing
vi /etc/apache2/httpd.conf
LoadModule php5_module libexec/apache2/libphp5.so
Release comments
Then sudo apachectl restart to restart, create a new index.php in the Sites folder of the user directory, echo phpinfo() in it, and you can see the effect:
reference:
http://www.cnblogs.com/yjmyzz/p/3920361.html

To protect the application from session-related XSS attacks, the following measures are required: 1. Set the HttpOnly and Secure flags to protect the session cookies. 2. Export codes for all user inputs. 3. Implement content security policy (CSP) to limit script sources. Through these policies, session-related XSS attacks can be effectively protected and user data can be ensured.

Methods to optimize PHP session performance include: 1. Delay session start, 2. Use database to store sessions, 3. Compress session data, 4. Manage session life cycle, and 5. Implement session sharing. These strategies can significantly improve the efficiency of applications in high concurrency environments.

Thesession.gc_maxlifetimesettinginPHPdeterminesthelifespanofsessiondata,setinseconds.1)It'sconfiguredinphp.iniorviaini_set().2)Abalanceisneededtoavoidperformanceissuesandunexpectedlogouts.3)PHP'sgarbagecollectionisprobabilistic,influencedbygc_probabi

In PHP, you can use the session_name() function to configure the session name. The specific steps are as follows: 1. Use the session_name() function to set the session name, such as session_name("my_session"). 2. After setting the session name, call session_start() to start the session. Configuring session names can avoid session data conflicts between multiple applications and enhance security, but pay attention to the uniqueness, security, length and setting timing of session names.

The session ID should be regenerated regularly at login, before sensitive operations, and every 30 minutes. 1. Regenerate the session ID when logging in to prevent session fixed attacks. 2. Regenerate before sensitive operations to improve safety. 3. Regular regeneration reduces long-term utilization risks, but the user experience needs to be weighed.

Setting session cookie parameters in PHP can be achieved through the session_set_cookie_params() function. 1) Use this function to set parameters, such as expiration time, path, domain name, security flag, etc.; 2) Call session_start() to make the parameters take effect; 3) Dynamically adjust parameters according to needs, such as user login status; 4) Pay attention to setting secure and httponly flags to improve security.

The main purpose of using sessions in PHP is to maintain the status of the user between different pages. 1) The session is started through the session_start() function, creating a unique session ID and storing it in the user cookie. 2) Session data is saved on the server, allowing data to be passed between different requests, such as login status and shopping cart content.

How to share a session between subdomains? Implemented by setting session cookies for common domain names. 1. Set the domain of the session cookie to .example.com on the server side. 2. Choose the appropriate session storage method, such as memory, database or distributed cache. 3. Pass the session ID through cookies, and the server retrieves and updates the session data based on the ID.


Hot AI Tools

Undresser.AI Undress
AI-powered app for creating realistic nude photos

AI Clothes Remover
Online AI tool for removing clothes from photos.

Undress AI Tool
Undress images for free

Clothoff.io
AI clothes remover

Video Face Swap
Swap faces in any video effortlessly with our completely free AI face swap tool!

Hot Article

Hot Tools

SublimeText3 Mac version
God-level code editing software (SublimeText3)

Safe Exam Browser
Safe Exam Browser is a secure browser environment for taking online exams securely. This software turns any computer into a secure workstation. It controls access to any utility and prevents students from using unauthorized resources.

Atom editor mac version download
The most popular open source editor

EditPlus Chinese cracked version
Small size, syntax highlighting, does not support code prompt function

SecLists
SecLists is the ultimate security tester's companion. It is a collection of various types of lists that are frequently used during security assessments, all in one place. SecLists helps make security testing more efficient and productive by conveniently providing all the lists a security tester might need. List types include usernames, passwords, URLs, fuzzing payloads, sensitive data patterns, web shells, and more. The tester can simply pull this repository onto a new test machine and he will have access to every type of list he needs.