LinuxQuestions.org
Share your knowledge at the LQ Wiki.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Newbie
User Name
Password
Linux - Newbie This Linux forum is for members that are new to Linux.
Just starting out and have a question? If it is not in the man pages or the how-to's this is the place!

Notices


Reply
  Search this Thread
Old 04-14-2020, 05:45 AM   #1
Novatian
Senior Member
 
Registered: Feb 2008
Location: Australia
Distribution: Mint 20.3 MATE, Android, Windows 10, MX Linux and Mint 21.1 MATE
Posts: 1,052

Rep: Reputation: 38
Best instructions or how to, set up a secure website from a template?


Where can I find an excellent how to on setting up a secure website? This will contain a document, moderated blog and links, music. It must be password protected...
Cloud Linux and SSD good hosting?

Last edited by Novatian; 04-14-2020 at 06:13 AM.
 
Old 04-14-2020, 05:53 AM   #2
Turbocapitalist
LQ Guru
 
Registered: Apr 2005
Distribution: Linux Mint, Devuan, OpenBSD
Posts: 7,258
Blog Entries: 3

Rep: Reputation: 3713Reputation: 3713Reputation: 3713Reputation: 3713Reputation: 3713Reputation: 3713Reputation: 3713Reputation: 3713Reputation: 3713Reputation: 3713Reputation: 3713
Please say more about your fuctional requirements. The more moving parts the site has the less secure it can be and the more work it is to maintain. The ultimate secure site is thus valid HTML + CSS, with SSI optional, all accessible over chrooted SFTP. NO JAVASCRIPT ANYWHERE, not now not ever.

If you are aiming just for a blog with multiple authors, then maybe a static site generator would fit the bill. Hugo, Jekyll, and Pelican are popular examples. However, that would prevent visitor comments.

If you want visitors to leave comments, then don't farm that out. However, you'll need a much more complex setup, maybe even WordPress. Again, please say more about your goals for what the site will be like.
 
2 members found this post helpful.
Old 04-14-2020, 06:02 AM   #3
ondoho
LQ Addict
 
Registered: Dec 2013
Posts: 19,872
Blog Entries: 12

Rep: Reputation: 6053Reputation: 6053Reputation: 6053Reputation: 6053Reputation: 6053Reputation: 6053Reputation: 6053Reputation: 6053Reputation: 6053Reputation: 6053Reputation: 6053
Quote:
Originally Posted by Novatian View Post
a secure website
As such, this is meaningless.

Define what security you need/want.

A website involves 3 distinct components: the site structure itself (HTML,CSS,PHP,javascript...), the server software (apache, nginx) and the underlying operating system (Windows, *BSD, *NIX...).
All these components should be sufficiently secure (from outside attacks I presume).
 
1 members found this post helpful.
Old 04-17-2020, 03:19 PM   #4
John VV
LQ Muse
 
Registered: Aug 2005
Location: A2 area Mi.
Posts: 17,622

Rep: Reputation: 2651Reputation: 2651Reputation: 2651Reputation: 2651Reputation: 2651Reputation: 2651Reputation: 2651Reputation: 2651Reputation: 2651Reputation: 2651Reputation: 2651
i used Geeklog in the past
https://www.geeklog.net/

the CMS is very customizable and security is there top priority
 
1 members found this post helpful.
Old 04-17-2020, 04:48 PM   #5
sevendogsbsd
Senior Member
 
Registered: Sep 2017
Distribution: FreeBSD
Posts: 2,252

Rep: Reputation: 1011Reputation: 1011Reputation: 1011Reputation: 1011Reputation: 1011Reputation: 1011Reputation: 1011Reputation: 1011
OP: this is your second thread of exactly this same topic. There is no such thing as a "secure website from a template". Web site and web application security is a process and not something you can just bolt on.
 
1 members found this post helpful.
Old 05-04-2020, 09:03 AM   #6
Novatian
Senior Member
 
Registered: Feb 2008
Location: Australia
Distribution: Mint 20.3 MATE, Android, Windows 10, MX Linux and Mint 21.1 MATE
Posts: 1,052

Original Poster
Rep: Reputation: 38
Okay, it is possible someone may disagree with my content and hack or contact the web host to take it down. I will aim to moderate all comments.So from my other thread I was informed that WP or Wix could itself take down the site. And that a web designer could help.

I'd like to publish a document with a comment box.
 
Old 05-05-2020, 01:56 AM   #7
chrism01
LQ Guru
 
Registered: Aug 2004
Location: Sydney
Distribution: Rocky 9.2
Posts: 18,348

Rep: Reputation: 2749Reputation: 2749Reputation: 2749Reputation: 2749Reputation: 2749Reputation: 2749Reputation: 2749Reputation: 2749Reputation: 2749Reputation: 2749Reputation: 2749
I strongly recommend you read the Sticky posts at the top of our Security forum here https://www.linuxquestions.org/quest...ux-security-4/
 
1 members found this post helpful.
Old 05-06-2020, 01:59 AM   #8
ondoho
LQ Addict
 
Registered: Dec 2013
Posts: 19,872
Blog Entries: 12

Rep: Reputation: 6053Reputation: 6053Reputation: 6053Reputation: 6053Reputation: 6053Reputation: 6053Reputation: 6053Reputation: 6053Reputation: 6053Reputation: 6053Reputation: 6053
deleted; OP's requirements are just too vague.

Last edited by ondoho; 05-06-2020 at 02:00 AM.
 
Old 05-14-2020, 12:49 AM   #9
Novatian
Senior Member
 
Registered: Feb 2008
Location: Australia
Distribution: Mint 20.3 MATE, Android, Windows 10, MX Linux and Mint 21.1 MATE
Posts: 1,052

Original Poster
Rep: Reputation: 38
How could I better ask this question? For my knowledge is limited to knowledge of hackers and possible complaints to web hosts by people who disagree.

I like linux for it security hardening that Windows doesn't have, for my past windows desktop was hacked by someone claiming to be a psychopath.


I consider a hacker may take down my site or alter it to include profanity or simple lies.
 
Old 05-14-2020, 02:23 AM   #10
ondoho
LQ Addict
 
Registered: Dec 2013
Posts: 19,872
Blog Entries: 12

Rep: Reputation: 6053Reputation: 6053Reputation: 6053Reputation: 6053Reputation: 6053Reputation: 6053Reputation: 6053Reputation: 6053Reputation: 6053Reputation: 6053Reputation: 6053
It really boils down to this:
Either get enough knowledge to be able to run your own server/site with enough confidence to not have to ask these fluttering insecure questions, or use a service that (claims to) doall that for you. I believe a Wordpress.com blog would fall in the latter category. Not a shabby choice.
 
2 members found this post helpful.
Old 05-14-2020, 09:50 AM   #11
sevendogsbsd
Senior Member
 
Registered: Sep 2017
Distribution: FreeBSD
Posts: 2,252

Rep: Reputation: 1011Reputation: 1011Reputation: 1011Reputation: 1011Reputation: 1011Reputation: 1011Reputation: 1011Reputation: 1011
OP: the OS running the site is irrelevant, although I am obviously partial to Linux. What really matters is the web server software (Apache, nginx, etc), how it is configured and how the web site is written: there MUST be measures taken in the code to deny xss, csrf, etc. It is not an easy, bolt-on task.
 
1 members found this post helpful.
Old 05-14-2020, 07:24 PM   #12
frankbell
LQ Guru
 
Registered: Jan 2006
Location: Virginia, USA
Distribution: Slackware, Ubuntu MATE, Mageia, and whatever VMs I happen to be playing with
Posts: 19,272
Blog Entries: 28

Rep: Reputation: 6124Reputation: 6124Reputation: 6124Reputation: 6124Reputation: 6124Reputation: 6124Reputation: 6124Reputation: 6124Reputation: 6124Reputation: 6124Reputation: 6124
Have you consulted with your hosting provider's tech support and help documents?
 
1 members found this post helpful.
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
A Template For A Free Secure Internet DavidLee1A Linux - General 2 12-30-2012 11:44 AM
Resume creator - export options : template vs non-template approach vharishankar Programming 1 12-07-2011 11:11 PM
from django.template import Template, gives output firedancer Linux - Newbie 0 11-30-2007 02:08 PM
Template class with a template member... Nicholas Bishop Programming 3 02-21-2005 08:27 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Newbie

All times are GMT -5. The time now is 01:45 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration