website mkdocs
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.

4.5 KiB

Docker Hub


  • Kubernetes domain hosting
  • 5+ GB website space ( fair use policy )
  • PHP support (Linux/Apache variant)
  • ASP support (Windows/IIS variant)
  • All container based services.

The following options are available at an extra charge:

  • expansion of web space (in consultation with CIT)
  • e-mail addresses
  • domain registration (.nl, .com, .org, .eu, etc.).

Since 2017 every new hosting domain is automatically a docker environment.
There's still a active connection between the old shared environment and the new one.


The whole webhosting environment is behind several loadbalancers, force ssl does not work out of the box.
Because the internal communication between the loadbalancers (lb) and webservers are plain http.

If you force a website without the correct headers, the application will stay in a loop and fail.
The answer is simple , the webserver doesn't know that the request is secure! only the loadbalancer knows.

If we do a htaccess override, actually were telling the webserver , redirect once, if the Header HTTP:X-SSL-Enabled is true, don't do anything! otherwise redirect to https.



client http (80) <-> http (80) -> http (80) -> website (80)

or both

client https (443) <--> (443) -> http (80) -> website(80)

force https

client http (80) <-> force redirect https (443) -> http (80) -> website (80)

htaccess Override

	# auto redirect to ssl, only for domains or with own certificates
	<IfModule mod_rewrite.c>
	RewriteEngine On
	RequestHeader set HTTP:X-SSL-Enabled "true"
	RewriteCond %{HTTP:X-SSL-Enabled} !true
	RewriteRule (.*)$1 [R,L]

wordpress https

Add the following to the wp-config.php

if (strpos($_SERVER['HTTP_X_FORWARDED_PROTO'], 'X-SSL-Enabled') != 'true') {

If you get mixed content warnings, in the default theme.
edit the file : wp-content/themes/twentyseventeen/assets/images/svg-icons.svg
and replace http to https

old  xmlns="" xmlns:xlink="">
new  xmlns="" xmlns:xlink="">


SSH provides a secure channel over an unsecured network in a client-server architecture, connecting an SSH client application with an SSH server.
Common applications include remote command-line login and remote command execution, but any network service can be secured with SSH.

Example Connection


Example Tunnel

ssh -L 8080:IP:80 -N 1

This only works with Two Factor Authentication

Two factor auth

Put two files inside you're homedir/.ssh folder
mobile_number and email_address

$ cat ~/.ssh/mobile_number

$ cat ~/.ssh/email_address





CLI dump database

$ ssh
$ mysqldump --host -u account -p -D database \ 
| gzip -c | > ~/backup/database.sql.gz

CLI restore database

$ ssh
$ gunzip < ~/backup/database.sql.gz | mysql --host \ 
-u account -p database > ~/backup/database.sql

CLI optimize database

$ ssh
$ mysqloptimze --host -u account -p -D database 

CLI enter database

$ ssh
$ mysql --host -u account -p

CLI remote access database

$ ssh -L -N 1
$ mysql --host localhost -u account -p




$ cat ~\site.htaccess

Override upload filesize

<IfModule mod_php7.c>
php_value upload_max_filesize 100M
php_value post_max_size 100M
php_value max_execution_time 200
php_value max_input_time 200

Override memory limit

<IfModule mod_php7.c>
php_value memory_limit 64M


RewriteCond %{REQUEST_URI} ^(.*)?wp-login\.php(.*)$ [OR]
RewriteCond %{REQUEST_URI} ^(.*)?wp-admin$
RewriteCond %{REMOTE_ADDR} !^129\.125\.
RewriteCond %{REMOTE_ADDR} !^77\.43\.20\.
RewriteCond %{REMOTE_ADDR} !^10\.9\.
RewriteRule ^(.*)$ - [R=403,L]