Setting up a Maintenance page with Apache and Cookies

mshields — Sat, 16 May 2009 11:39:04 +0000

There are times when you want to make changes to your website and you do not want your visitors to see the site before you have finished deploying and testing the website. Here is an example using Apache, mod_rewrite and a cookie set by a PHP page.

First, create your maintenance webpage called maintenance.html. Second, create a file called set_cookie.php with the following contents

setcookie(“testing”, “testing”, time()+36000); /* expire in 600 minutes */
?>

Next, create a file called .htaccess in your main web directory with the following contents

RewriteEngine on
RewriteCond %{HTTP_COOKIE} !testing
RewriteCond %{REQUEST_URI} !/maintenance.html$
RewriteCond %{REQUEST_URI} !/set_cookie.php$
RewriteCond %{REQUEST_URI} !/logo\.jpg$
RewriteRule ^(.*) /maintenance.html [NC,L]

Lastly, in your web browser, go to http://www.yourdomain.com/set_cookie.php. From that point on, you will be able to browse your website, but your visitors will be redirected to your maintenance.html webpage

Creating a self-signed SSL Certificate

mshields — Tue, 17 Feb 2009 15:16:24 +0000

For this you will need the openssl package. First we want to start by generating a private key.

root@localhost# openssl genrsa -out www.mydomain.com.key 1024
Generating RSA private key, 1024 bit long modulus
………….++++++
………………..++++++
e is 65537 (0×10001)

Then, we need to generate the certificate request and fill in the appropriate information. Make sure that the “Common Name” matches the domain you want to protect via SSL, so if you domain was www.mydomain.com, use that. If you wanted to protect mydomain.com (without the www.) then use that.

root@localhost# openssl req -new -key www.mydomain.com.key -out www.mydomain.com.csr
You are about to be asked to enter information that will be incorporated
into your certificate request.
What you are about to enter is what is called a Distinguished Name or a DN.
There are quite a few fields but you can leave some blank
For some fields there will be a default value,
If you enter ‘.’, the field will be left blank.
—–
Country Name (2 letter code) [GB]:
State or Province Name (full name) [Berkshire]:
Locality Name (eg, city) [Newbury]:
Organization Name (eg, company) [My Company Ltd]:
Organizational Unit Name (eg, section) []:
Common Name (eg, your name or your server’s hostname) []:www.mydomain.com
Email Address []:email@mydomain.com

Please enter the following ‘extra’ attributes
to be sent with your certificate request
A challenge password []:
An optional company name []:

Next, generate the self-signed certificate. You can specify the number of days the cert is valid for.

root@localhost# openssl x509 -req -days 365 -in www.mydomain.com.csr -signkey www.mydomain.com.key -out www.mydomain.com.crt
Signature ok
subject=/C=/ST=/L=/O=/CN=www.mydomain.com/emailAddress=email@mydomain.com
Getting Private key

Next, move the certificate and keyfile into apache’s SSL directory.

mv www.mydomain.com.key /etc/httpd/conf/ssl.key/
mv www.mydomain.com.crt /etc/httpd/conf/ssl.crt/

Finally, we configure our SSL virtual host in Apache. The simplest way to do this is to copy the virtual host for the site you want to make SSL, then add/change the following bits.

…
SSLEngine on
SSLCertificateFile /etc/httpd/conf/ssl.key/www.mydomain.com.key
SSLCertificateKeyFile /etc/httpd/conf/ssl.crt/www.mydomain.com.crt
…

SysAdmin Valley » apache

Setting up a Maintenance page with Apache and Cookies

Creating a self-signed SSL Certificate