#1 Is to stop the mysql process with the following command:

/etc/init.d/mysql stop

#2 You need to start the MySQL(mysqld) server process with the –skip-grant-tables option so that it will skip the password verification. We do this with the following command:

mysqld_safe –skip-grant-tables &

and you should get a result something like this:

Starting mysqld daemon with databases from /var/lib/mysql

mysqld_safe[5121]: started

#4 Now you can connect to MySQL as the root user with the following command:

mysql -u root

and you should get a result something like this:

Welcome to the MySQL monitor. Commands end with ; or \g.
Your MySQL connection id is 227
Server version: 5.0.32-Debian_7etch5-log Debian etch distribution

Type 'help;' or '\h' for help. Type '\c' to clear the buffer.

mysql>

#4 Now you need to setup the new root password

mysql> use mysql;
mysql> update user set password=PASSWORD("NEW-ROOT-PASSWORD") where User='root';
mysql> flush privileges;
mysql> quit

#5 Stop then start theMySQL server and test the new password

/etc/init.d/mysql stop

/etc/init.d/mysql start

mysql -u root -p

When i think about it now, it was quite easy, but when i was searching for the solution it was quite hard to get to it

Forbidden

You don’t have permission to access /restricted on this server.

The explanations work on Debian with Apache2 tested by me, but also it should work on any other OS and Apache2 version. Here is how you do it: you need to edit the following file /etc/apache2/sites-available/default and you do that with the following commmand:

nano /etc/apache2/sites-available/default

now at the end of the file on top of </VirtualHost> you need to add the following:

<Directory “/var/www/restricted/”>
Options Indexes MultiViews FollowSymLinks
AllowOverride None
Order deny,allow
Deny from all
Allow from 1.1.1.1
</Directory>

replace “1.1.1.1″ with your ip and  “/var/www/restricted/” with the path to the directory you want to restrict access to.

Now press ctrl+x and then Y to confirm and save the modifications. Now we need to reload the config file with the following command and we are done.

/etc/init.d/apache2 reload

Most of the Microsoft 70-624 deploying and maintaining windows vista client and 2007 office system desktops and Microsoft 70-238 deploying messaging solutions with exchange server 2007 professionals deem Cisco 642-971 data center network infrastructure design and Microsoft 70-453 for transition MCITP SQL server 2005 DBA mandatory for every IBM 000-960 storage sales.

I always hate the thing that after a new install of Debian(which is my favourite server OS) and Apache2(very stable webserver) i get that footer on List and Error pages that presents whoever visits that page with full info on name and version of modules installed. Thats not very safe, because these days the web is full of exploits and i dont want some script kiddie to find a nice exploit and deface my website because of the info provided by Apache. So here is what you need to do to remove that information:

with the following command we edit the apache2 config file:

nano /etc/apache2/apache2.conf

now press ctrl+W to open the find prompt and search for “ServerTokens”, you will now see a line that usually is set by default to ServerTokens Full, go ahead and change that line to ServerTokens Prod. Setting this to Prod only displays Apache and nothing else.

now press ctrl+W again to open the find promp and search for “ServerSignature” you will now see a line that usually is set by default to ServerSignature On, go ahead and change that line to ServerSignature Off. The ServerSignature directive allows the configuration of a trailing footer line under server-generated documents.

Now press ctrl+x and the Y to save to changes we made and run the following command to reload the Apache config:

/etc/init.d/apache2 reload

Everything is done, you now have a more secured webserver.