100SILEX, de 0 à 100 s: browser
1522 5 Simple steps to secure TT-RSS reader
secure tt-rss, tt-rss security
5 Simple steps to secure TT-RSS reader
July 27, 2015 by Anand Leave a Comment
Share: share htpcBeginner
We recently presented Tiny Tiny RSS to you as a great alternative to Google reader, which is one more way you can extend the functionality of your home server or your hosting space. Hopefully, you already exported your data from Google Reader. In this post, we will show you how to secure TT-RSS reader to prevent unauthorized access. Tiny Tiny RSS is an open source web-based news feed (RSS/Atom) reader and aggregator, designed to allow you to read news from any location, while feeling as close to a real desktop application as possible. As we previously explained, it makes an ideal candidate to replace Google Reader. While there are services like Feedly and Newsblur grabbing the crowd Google Reader, which some of you may prefer, there are a group of people who would like to run a RSS reader on their own server and keep things private. Assuming that you have already installed Tiny Tiny RSS on your alternative to Google reader or hosting space, we will now show you how to secure TT-RSS reader.
Secure TT-RSS Reader
One of the main reasons to move to an RSS aggregator like TT-RSS is maintaining your privacy. So if you do not secure TT-RSS reader well you are not only making your data available public but also making your system vulnerable to potential attacks. Choosing a strong username and password while setting your TT-RSS is the first basic thing that you can do to secure TT-RSS reader. Listed below are few more ways you can increase TT-RSS readerâs security.
1. Rename TT-RSS Folder
One of the first lines of defense is to not use tt-rss in your URL to access your TT-RSS reader. To do this on your hosting account, use a folder name other than tt-rss while installing TT-RSS. On your Linux home server, edit /etc/tt-rss/apache.conf and change the first /tt-rss to something else. An example is shown below.
TT-RSS Rename URL
TT-RSS Rename URL
After making the change, restart your TT-RSS and Apache to apply the changes:
sudo service tt-rss restart
sudo serivce apache2 reload
Your TT-RSS reader is now available through the new URL (example: http://mydomain.com/myreader) only.
Amazon Kindle Fire HDX
2. Enable SSL
Accessing TT-RSS through http sends all information as unencrypted data. This could mean less privacy due to potential sniffing. The solution is to encrypt the data during transfer, which makes sniffing by hackers harder. To enable and enforce HTTPS access on Linux servers with Apache, install the following run-time libraries:
sudo apt-get install libssl0.9.8 libpam0g openssl
Restart your Apache server as shown above. You should now be able to access your TT-RSS reader with HTTPS. Note that you may have to have a SSL certificate generated. Refer to Apache documentation if you want to generate your own certificate. By default, the system will install self-signed certificates for you. These certificates are likely to raise warnings when you point your browser to the site.
3. Disable Single User Mode
By default the single user mode is already disabled (in /etc/tt-rss/config.php). Enabling single user mode will also disable TT-RSS login system. Therefore, keep the single user mode disabled.
Disable Single User Mode
Disable Single User Mode
A better way to make it a single user system is by limiting the number of registrations to 1 as described below. For whatever reason, you still want to enable single user mode, make sure you implement Apache Authentication method described below.
4. Self Registrations
Self registrations allow a visitor to register themselves, which could reduce TT-RSS security. If your TT-RSS will be for personal use only, then you may want to disable user registration by setting âENABLE_REGISTRATIONâ to âfalseâ.
TT-RSS Self Registrations
TT-RSS Self Registrations
To further secure TT-RSS Reader, uou may also want to change âREG_MAX_USERSâ to â1â to make your account the only account on TT-RSS.
asus n66uASUS RT-N66U Dual-Band Wireless-N900 Gigabit Router
asus n66u reviewsFind out why it is rated the best wireless router in its class.
5. Apache Authentication
Last but not the least, enable Authentication. This is even more important if you have enabled âSingle User Modeâ describe above. Every time you access TT-RSS, you will be asked for a username and password as shown in the picture below:
Secure TT-RSS Reader
On your hosting account this equivalent to password protecting a directory, in this case the TT-RSS directory. To do this on your Ubuntu server, you will have to create a .htpasswd file. More information is available in Apache documentation. But the easiest way to achieve this is to use one of the htpasswd generators available online.
After you enter the username and password two code blocks will be generated. Copy the contents of the .htpasswd code block and save it to /etc/apache2/.htpasswd_ttrss. Next, copy the contents of the .htaccess code block and add it to /etc/tt-rss/apache.conf as shown below:
TT-RSS Apache Authentication
TT-RSS Apache Authentication
Save and exit. Restart both TT-RSS and Apache previous shown above. You should be prompted for a password every time you try to access TT-RSS. Some may think that this double authentication method is an extra inconvenience. But I would rather be safe than sorry.
Go ahead, secure Tiny Tiny RSS Reader and enjoy reading articles on your private secure RSS Reader.
1516 browser - Page up and page down in web pages and elsewhere - Android Enthusiasts Stack Exchange
1513 browser - Page up and page down in web pages and elsewhere - Android Enthusiasts Stack Exchange
1328 Index of /pub/opera/win
download Opera Browser
Twenty years of a free, open web
On 30 April 1993 CERN published a statement that made World Wide Web technology available on a royalty free basis, allowing the web to flourish
On 30 April 1993 CERN published a statement that made World Wide Web ("W3", or simply "the web") technology available on a royalty-free basis. By making the software required to run a web server freely available, along with a basic browser and a library of code, the web was allowed to flourish.
1195 Qarte-1.0 arte.tv browser (ex Qarte+7) (Page 1) / Vos dĂÂ©veloppements libres / Forum Ubuntu-fr.org
1177 StatCounter Global Stats - Browser, OS, Search Engine including Mobile Market Share
Tracks the Market Share of Search Engines, Browsers and Operating Systems including Mobile from over 15 billion monthly page views.
global stats, browser, version, mobile, free, os, operating, system, systems, browsers, market, share, market share, global, stats
1065 View the Flash cookies (Local Shared Object /.sol files) stored in your computer
FlashCookiesView is a small utility that displays the list of cookie files created by Flash component in your Web browser
flash,cookies,web,browser,view,delete, local, shared, objects, lso, .sol
746 40 Essential CSS Templates, Resources and Downloads | Speckyboy Design Magazine
Every web developer should have in their toolbox a collection of CSS tools and resources like the ones outlined in this article. A set of techniques that you rely on and that are always at the ready to cover any possible eventuality.
You will find not a selection of the latest innovative CSS techniques (there are some) in this article, merely a collection of tools, resources and downloads that can be used by web designers for solutions to everyday CSS design and coding solutions.
The resources below have been split into four categories: CSS Download Packages (all of the CSS resources offer multiple variations of each technique), Downloadable CSS Tools (the resources within this category offers specialized templates), Web, Mobile & Form Frameworks (+ tools and templates to help you get started with each); Feature-Rich and Outstanding Mobile & Web Templates and finally, a selection of tools to help with cross browser compatibility.
We donât presume that this is an ultimate collection, merely a selection of resources we have found to be indispensable. We are positive we have missed a few, and would love to hear about the tools and resources you rely upon.
722 Making AJAX Applications Crawlable - Google Code
If you're running an AJAX application with content that you'd like to appear in search results, we have a new process that, when implemented, can help Google (and potentially other search engines) crawl and index your content. Historically, AJAX applications have been difficult for search engines to process because AJAX content is produced dynamically by the browser and thus not visible to crawlers. While there are existing methods for dealing with this problem, they involve regular manual maintenance to keep the content up-to-date.
Learn why search engines don't see the content you see and what needs to happen to fix this.
Getting started guide
Get started in making your AJAX application visible to search engines. If you are in a hurry, you can start here, but AJAX crawling is a complex topic, so we recommend reading all the documentation.
Creating HTML snapshots
Learn more about creating HTML snapshots, and which technique might be best suited for your application.
Frequently asked questions
Having trouble? Check out the frequently asked questions.
Get the details.
720 Common Security Mistakes in Web Applications - Smashing Magazine
Web application developers today need to be skilled in a multitude of disciplines. Itâs necessary to build an application that is user friendly, highly performant, accessible and secure, all while executing partially in an untrusted environment that you, the developer, have no control over. I speak, of course, about the User Agent. Most commonly seen in the form of a web browser, but in reality, one never really knows whatâs on the other end of the HTTP connection.
There are many things to worry about when it comes to security on the Web. Is your site protected against denial of service attacks? Is your user data safe? Can your users be tricked into doing things they would not normally do? Is it possible for an attacker to pollute your database with fake data? Is it possible for an attacker to gain unauthorized access to restricted parts of your site? Unfortunately, unless weâre careful with the code we write, the answer to these questions can often be one weâd rather not hear.
Weâll skip over denial of service attacks in this article, but take a close look at the other issues. To be more conformant with standard terminology, weâll talk about Cross-Site Scripting (XSS), Cross-Site Request Forgery (CSRF), Phishing, Shell injection and SQL injection. Weâll also assume PHP as the language of development, but the problems apply regardless of language, and solutions will be similar in other languages.
637 50 List of Free Online Photo Editing Tools | blueblots.com
Editing an image is very popular these days due to the innovation of graphic software programs that will allow us to create computer arts from scratch. However, we could also enhance, add some cool effects and customize the look of our images easily without having the need of these soft wares through the online photo editors. An online photo editor tool allows us to edit and manipulate a photo in the Web Browser. This is more advantageous compared to the softwares for editing an image as this could not consume much of the memory of your desktop and the processing is done faster by the server. With just a few clicks, we could now be able to customize our own photos, create funny photos from our pictures or even feature ourselves in a magazine cover like that of a celebrity. Here are the 50 List of Photo Editing Tools to Help You Edit Images and Photos Online for free. Try to check and get your best pick!
632 ericmiraglia.com Â» The 2010 Web Application (R)evolution: HTML5 and Beyond (Resources)
Some notes from a recent presentation on HTML5, CSS3, and other current proposals that are starting to see real world browser implementations â serves as a starter linkography for reading up on recent developments.
608 Stories In Flight | HTML5/CSS3 Cheatsheet
Here are some simple cut-and-paste examples of HTML5/CSS3 features that are currently (mid-2010) usable across a number of web browsers, chief among them Firefox, Safari, Chrome and Opera.
For many of the CSS3 examples, Internet Explorer is the lone holdout with a limited number of workarounds, however these features degrade gracefully and may still be useful on new projects as long as this limitation is kept in mind.
Please note: With the exception of SVGWeb, no Internet Explorer workarounds have been included on this page - most of the examples will therefore not work in IE6, IE7 or IE8.
And if you want to discuss any of the code below or leave a correction or suggestion, you can leave comments below and here is also The Web We Should Have on my blog. Thanks!
On this page:
Rounded Corners Redux: Circles
Canvas Text Rotate
Some more complex subjects are also discussed in these separate pages:
Multiple Background Images
HTML5 Audio Data API - Spectrum Visualizer
Google Font API and Font Loading Behavior
...and don't forget to leave some comments below!
576 55 Excellent Examples of Websites Using HTML5 | Inspiration
Html 5 is the new and updated version of the web standard and famous HTML. The HTML 5 has tons of new features, techniques and elements that allow designers to create new and beautiful stuff in short line codes. The new standard incorporates features like video playback and drag-and-drop that have been previously dependent on third-party browser plug-ins such as Adobe Flash, Microsoft Silverlight, and Google Gears. With HTML5 you can add some really nice effects to your website without loosing your head to do it... it's for sure a nice way to go.
509 A List Apart: Articles: Supersize that Background, Please!
With an advertising world keen to use every inch of a medium for brand or product experience, it is becoming increasingly popular to design websites with full-browser backgrounds. Using CSS, this can be achieved quite easily. Just drop a huge background image in a page with one line of code (Line wraps marked Â» âEd.):
background: #000 url(myBackground_1280x960.jpg) Â»
center center fixed no-repeat;
483 Support Details | Tech Support Management
browser features detection
472 Plupload - A tool for uploading files using Flash, Silverlight, Google Gears, HTML5 or Browserplus
Multiple file upload utility using Flash, Silverlight, Google Gears, HTML5 or BrowserPlus!
upload,multiple,file upload,upload files,file management,google gears,silverlight,flash,html5,browserplus
448 HTML Ampersand Character Codes
These are character sequences that may appear in HTML documents; they represent sometimes useful symbols that are not part of the standard ASCII set or that would be difficult or impossible to type otherwise (e.g. the less-than sign, which would always be mistaken for the beginning of an HTML tag). Case is signinficant.
The content of this table has been throughly tested.
If the character that appears in the first column does not fit the description in the third column,
your browser has a screw loose.
445 Doug Kaufman's Web Site - DOS ports LYNX
This site exists primarily to distribute DOS ports of programs in which I have taken an interest. This consists primarily of the text-mode web browser "lynx", the network file retrievers "wget" and "curl", the file compressor "bzip2" and the URL extractor "urlview". Running programs originally designed for unix in DOS is not necessarily easy. If you download these programs, please read the text files which explain how to set up these programs in DOS and which functional problems may be present.
The latest DOS port of lynx is 2.8.5rel.1. You can download it here (2463576 bytes, 18 April 2004). This version is compiled with openssl-0.9.7d to give SSL support. This means that it can now access https:// URLs. This can now be distributed because of the easing of US export controls on encryption. Please note, however, that US regulations still prohibit export to Cuba, Iran, Iraq, Libya, North Korea, Sudan, or Syria. Do not download the file if you are from any of these countries. Please check your own country's regulations on the use of strong cryptography before using or redistributing this file.
440 A List Apart: Articles: Taking Advantage of HTML5 and CSS3 with Modernizr
Today, CSS-based layouts are commonplace and every browser has pretty solid support for them. But now we have CSS3 and HTML5, and the situation is repeating itselfâdifferent browsers demonstrate varying levels of support for these new technologies. Weâve smartened up, however, and no longer employ CSS hacks nor use browser sniffingâan unreliable, poor practice. Weâve also convinced more and more clients that websites donât need to look exactly the same in every browser. So how do we deal with this new but familiar problem? Simple: We use feature detection, which means that we do not ask the browser âwho are you?â and make unreliable assumptions from there on. Instead we ask the browser, âcan you do this and that?â Itâs a simple way to test browser capabilities, but doing all these tests manually all the time gets tiresome. To solve that problem (and others), you can use Modernizr.
430 Mega Collection Of Cheatsheets for Designers And Developers | SpyreStudios
cheatsheets, css, html, reference cards, web-design, development, seo, typography, php,resources,tools
396 The Essential Guide to @font-face
This guide will teach you how to implement @font-face with cross-browser compatibility and will also look at a number of the supporting services that have arisen, making it even easier to use custom fonts in your web designs.
font-face, tutorial, guide, css, google font api, typekit, font-face generator,css
327 ReclaimPrivacy.org | Facebook Privacy Scanner
Keep up with the latest news about privacy policies on Facebook.
The Erosion of Facebook Privacy eff.org
Facebook Privacy Changes eff.org
7 Things to Stop Doing Now on Facebook yahoo.com
Facebook's Gone Rogue wired.com
This website provides an independent and open tool for scanning your Facebook privacy settings. The source code and its development will always remain open and transparent.
Drag this link to your web browser bookmarks bar: Scan for Privacy
Go to your Facebook privacy settings and then click that bookmark once you are on Facebook.
You will see a series of privacy scans that inspect your privacy settings and warn you about settings that might be unexpectedly public.
Follow us on Facebook to hear about the latest updates.
Having trouble? Check our help page for tips and video walkthroughs.
Our mission is to promote privacy awareness on Facebook and elsewhere. Spread awareness to your friends on Facebook by sharing this website with them:
You can follow us on Twitter too!
If you prefer email, you can also sign up for the newsletter to get informed of privacy updates:
Are you a coder? Contribute to the source code and help to keep the privacy scanner up-to-date.
we never see your Facebook data
we never share your personal information
Simple. The scanner operates entirely within your own browser.
Statement of limitation of liability: you use this tool at your own risk, and by using this tool you agree to hold neither ReclaimPrivacy.org (nor its contributors) liable for damage to your Facebook account. However, we do strive to reduce that risk by keeping the source code open and transparent, so that we can identify bugs and quickly fix any functionality.
about the author
324 61 High Quality And Free xHTML Templates Part 2: Year 2010 | Graphic and Web Design Blog
This is part 2 of really fresh and high quality XHTML templates free for you to download, study and get inspired - all in the same time!
We discussed importance and usefulness about such free templates few days ago, but today we will present updated Part 2 with even more free xhtml templates! How cool is that â check out this article and get more 61 new and free template right now!
Study code, design, style â how templates work in different browsers, what makes them look good â great case study! Evaluate it and bookmark for later use, when youâll need to complete quick project or check some nifty effect with some cool code.
218 Opera Browser Wiki :: Opera Tools Supplementing the Opera Browser
A Wiki containing information about the Opera MDI (tabbed) browser and internet suite
Opera Web Browser M2 fastest browser secure follows web standards surf surfing the internet feature packed mouse gestures notes fast-forward tabbed browsing MDI
174 Pictobrowser : Une autre galerie Flickr en Flash | NiouMedia
Comment crĂÂ©er facilement une galerie flash ĂÂ partir de votre compte flickr? En fait Pictobrowser vous permet de crĂÂ©er une galerie ĂÂ partir des images
101 - 201