Here are the top 10 posts of 2011 for my blog, which were published during 2011.
- Adding iTerm2 Themes
- OMG! A *JBoss* Worm!!
- Suppressing the X-Powered-By Header in JBoss
- Here's a Preliminary "Apache Killer" Test Script
- Tomcat 6 Directory Locations on Ubuntu Server 11.04
- Verifying 'WebDAV HTTP Method PROPFIND Enabled' Remediation was Successful
- Update - Adding iTerm2 Themes
- Tomcat Crashes Soon After Successful Startup - Common Causes
- Some Good HTML5 Articles
- Mitigating the Apache Range Header DoS on Ubuntu Apache 2.2
iTerm 2 is a great replacement to the built-in OS X Terminal.app and back in February 2011, iTerm 2 introduced support for themes. Initially, it was pretty tricky to figure out how to import themes, which was why I created this post.
JBoss solidified its leadership over Glassfish in October 2011 when a nasty worm affecting JBoss was released.
This post provides remediation instructions for one of the more commonly found Information Disclosure vulnerabilities on JBoss-powered sites.
Back in August, 2011, the Apache Range Header vunerability was announced with exploit code that allowed anyone to easily DoS an apache site. This script was an initial attempt to detect that vulnerability.
Many of us are accustomed to the directory layout provided with a stock Apache Software Foundation-provided Tomcat distribution. Ubuntu places files in alternate locations. This post was written so I could easily refer to it when working with Ubuntu and, apparently, it was useful to a few thousand people.
Older IIS installations commonly suffer from this vulnerability and the script provided in this post provided a mechanism for safely displaying the problem while also verifying remediation was successful.
In July 2011, iTerm 2 theming support was overhauled making themes easier to manage.
This post documented common things that caused tomcat to crash after startup as well as the one that caused me problems.
Dustin Marx posted a lot of useful and interesting HTML5 articles towards the end of 2009 and the beginning of 2011. I posted this article linking to them, which wound up getting posted to DZone. Hopefully, this provided his site some well-deserved, additional exposure.
This post is fairly self-explanatory, providing remediation for the Apache Range Header vulnerability on Ubuntu.