Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here. |
| Notices |
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
Are you new to LinuxQuestions.org? Visit the following links:
Site Howto |
Site FAQ |
Sitemap |
Register Now
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
 |
Introduction to Linux - A Hands on Guide
This guide was created as an overview of the Linux Operating System, geared toward new users as an exploration tour and getting started guide, with exercises at the end of each chapter.
For more advanced trainees it can be a desktop reference, and a collection of the base knowledge needed to proceed with system and network administration. This book contains many real life examples derived from the author's experience as a Linux system and network administrator, trainer and consultant. They hope these examples will help you to get a better understanding of the Linux system and that you feel encouraged to try out things on your own.
Click Here to receive this Complete Guide absolutely free. |
|
 |
09-27-2005, 11:21 AM
|
#1
|
|
Member
Registered: Apr 2005
Location: Milton Keynes
Distribution: ubuntu 12.10
Posts: 87
Rep: 
|
securing php, apache and mysql
hello,
i would like to find quality documentation about securing php, mysql and apache... i've google it and found tons of info but i would like some experts advice of where is the GOOD documentation
|
|
|
|
|
09-28-2005, 02:57 AM
|
#2
|
|
Senior Member
Registered: Jan 2003
Location: Devon, UK
Distribution: Debian Etc/kernel 2.6.18-4K7
Posts: 2,380
Rep:
|
The key things that need to be addressed IMHO are:
1. Good iptables firewall.
2. Minimise the number of ports that are open. If you you don't need to ssh into the box from the net then close port 22 via the firewall as this is the port that is most commonly probed. If you need acccess only open it to the world via the firewall when you need to.
3. Probably the most important - have strong passwords.
4. Keep your software updated regularly.
Last edited by TigerOC; 09-28-2005 at 02:58 AM.
|
|
|
|
|
10-01-2005, 06:05 AM
|
#3
|
|
Senior Member
Registered: Dec 2003
Location: Brasil
Distribution: Arch
Posts: 1,037
Rep:
|
hi there,
Quote:
Originally posted by TigerOC
3. Probably the most important - have strong passwords.
|
agreed. considering the volume of "brute force" attacks nowadays this is the key.
on a side note, i suggest this tips for apache.
regards,
slackie1000 |
|
|
|
|
10-06-2005, 04:26 PM
|
#4
|
|
Member
Registered: Apr 2005
Location: Milton Keynes
Distribution: ubuntu 12.10
Posts: 87
Original Poster
Rep:
|
thanks for the tips... really appreciate them.....  |
|
|
|
|
10-07-2005, 06:30 AM
|
#5
|
|
Member
Registered: Mar 2004
Distribution: Slackware current, DSL 0.9.2
Posts: 133
Rep:
|
mod_security is good. Also try some of the different kernel patches out there.
|
|
|
|
|
10-18-2005, 12:08 PM
|
#6
|
|
Member
Registered: Jan 2004
Location: Austin, TEXAS
Distribution: CentOS 6.5
Posts: 207
Rep:
|
Quote:
Originally posted by TigerOC
4. Keep your software updated regularly.
|
Of all these recommendations, I think #4 needs to be #1.
More websites get comprimised due to vulnerabilities in web applications than via brute-forced passwords. Usually, a vulnerability in some secondary piece of software is then used to elevate priveleges for the intruder.
di11rod |
|
|
|
| Thread Tools |
Search this Thread |
|
|
|
Posting Rules
|
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
HTML code is Off
|
|
|
All times are GMT -5. The time now is 12:13 AM.
|
|
|
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.
|
|
 Latest Threads
LQ News
|
|
