developer resources
Codebales holds an ever growing number of solutions to problems that we have experienced in our day to day code writing
Selected filter
30
results
Andrew Fletcher
•
To resolve the CVE-2022-48624 vulnerability on Ubuntu using Nginx, it's crucial to understand that the issue lies within the "less" package, not Nginx itself. The vulnerability affects "less" before version 606, where close_altfile in filename.c in less omits shell_quote calls for LESSCLOSE, potentially allowing shell command injection.
The current less version is 551, which is vulnerable. You'll need to upgrade "less" to a version at or beyond 606.
CVE-2022-48624
close_altfile in filename.c in...
Andrew Fletcher
•
In many terminal text editors, you use find command as reference in Terminal...
Andrew Fletcher
•
In an environment that is running
Ubuntu 20.02
Nginx
Solr
The default...
Andrew Fletcher
•
Adding an SSL wildcard certificate to an Ubuntu server involves several steps....
Andrew Fletcher
•
When logging into Ubuntu server you will see a response similar to
Welcome to...
Andrew Fletcher
•
Forcing https and www or non-www is a process that I was a custom to through .htaccess. In fact I had become very strong at managing and working my .htaccess files. However, what I had become strong in one area, I was oblivious to using other methods. My bad.
Well that was until I had to change my way. Working on an Nginx server, .htaccess was not in play. Instead, I needed to configure the /etc/nginx/sites-available directory.
For me to force SSL and www I...
Andrew Fletcher
•
git clone git@bitbucket.org:{username}/{repo}.git
And I was unceremoniously...
Andrew Fletcher
•
Resources - changing Drush
Type
Version
Drush (current)
11.6.0
Drush...
Andrew Fletcher
•
Attempting to run a composer update command, you know the one used...
Andrew Fletcher
•
Goal: Restrict content access through username and password entry on an Nginx...
Andrew Fletcher
•
This page will be a progressive outline of moving those regular run scripts that really need to be automated. Or triggered by a keyword.
These scripts are rsync commands
The initial scripts
production environment
sudo rsync -aur staging/{project}/config drupal
cd drupal
sudo chown -R www-data:www-data config
cd ..
sudo rsync -aur staging/{project}/core drupal
cd drupal
sudo chown -R www-data:www-data core
cd ..
sudo rsync -aur staging/{project}/modules drupal
cd drupal
sudo chown...
Andrew Fletcher
•
Using Composer to Manage Projects and if required their dependencies
In this...
Andrew Fletcher
•
Looking at composer I first wanted to check the current version, which is...
Andrew Fletcher
•
Build the PHP base image with apache-buster using the Dockerfile.base
Since JN...
Andrew Fletcher
•
This article works through the steps to update dependencies in the...