RE: "Secure" Web Hosting?

From: Keith Bucknall (keith.bucknall_at_zen.co.uk)
Date: 11/27/04

  • Next message: miguel.dilaj_at_pharma.novartis.com: "Re: DMZ traffic (was Please help ! need to check IIS volunrabilities.)" 
    To: "'Germano, Tomas'" <TGermano@metrovias.com.ar>, "'Mark Spencer'" <mspencer@evidentdata.com>, <security-basics@securityfocus.com>
Date: Sat, 27 Nov 2004 14:37:50 -0000

    Apache works on windows 200x servers fine and I would recommend using this
    instead of IIS..

    ----------------------------------------------------------------------------
    --------------------------------------------------------------------------

     

    Many thanks.....

    Keith Bucknall

     

    -----Original Message-----
    From: Germano, Tomas [mailto:TGermano@metrovias.com.ar]
    Sent: 26 November 2004 12:53
    To: 'Mark Spencer'; security-basics@securityfocus.com
    Subject: RE: "Secure" Web Hosting?

    I think that you mount an Apache Web Server on a Windows 2000 or 2003 (I
    don´t know if Apache work on W2003) and you secure the Operative Sistem, you
    are fine or more secure that usind IIS.

    I don´t test IIS 6.0 over 2003

    Sorry for my English

    Tomas A Germano
    Analista de Seguridad
    Metrovias.
    Argentina

    -----Mensaje original-----
    De: Mark Spencer [mailto:mspencer@evidentdata.com]
    Enviado el: Miércoles 24 de Noviembre de 2004 11:49
    Para: security-basics@securityfocus.com
    Asunto: "Secure" Web Hosting?

    Hello all,

    I'm looking for suggestions on web hosting providers that pay particular
    attention to security issues, e.g. hardening networks, servers, and
    applications.

    On a somewhat related note, if I wanted to host a web server myself,
    what is the recommended platform for getting a web server online in a
    secure and intuitive fashion? I know that OpenBSD has an excellent
    reputation, but may be difficult to setup for someone that hasn't spent
    much time with BSD. What about EnGarde Linux?

    Thanks!

    Mark

    El contenido de este mail y cualquier archivo adjunto son confidenciales.
    Está dirigido solo a los destinatarios. Cualquier divulgación, distribución
    o copia de esta comunicación o cualquiera de sus contenidos está prohibida.
    Si Ud. ha recibido este mail por error por favor reenvíelo al remitente
    inmediatamente, borre el original y cualquier copia que resida en su
    computadora.

    • application/x-pkcs7-signature attachment: smime.p7s
  • Next message: miguel.dilaj_at_pharma.novartis.com: "Re: DMZ traffic (was Please help ! need to check IIS volunrabilities.)"

    Relevant Pages

    • RE: "Secure" Web Hosting?
      ... IIS 6.0 comes as standard on Server 2003 and is secure enough. ... I have switched to Apache though, coz there were a few things that couldn't work right on IIS. ... Subject: "Secure" Web Hosting? ...
      (Security-Basics)
    • Betr.: RE: "Secure" Web Hosting?
      ... You do know that IIS 6 is a totally diffrent product then IIS 5,4,3? ... Subject: "Secure" Web Hosting? ... de afzender en de informatie te verwijderen van iedere computer. ...
      (Security-Basics)
    • RE: NT/2000 vs Unix based Web Servers
      ... that's why Microsoft has a bad name in the security community. ... you do want to go with IIS then you can make it secure. ... NT/2000 vs Unix based Web Servers ...
      (Security-Basics)
    • Complete IIS Secure Installation & Baseline Whitepaper
      ... which details how secure IIS web ... significantly fortify Internet-facing IIS web servers. ...
      (microsoft.public.inetserver.iis.security)
    • Re: New years resolution
      ... > That doesn't mean that IIS is less secure. ... > people running those servers than it does about the server. ... Curtis ...
      (microsoft.public.security)