RE: "Secure" Web Hosting?
From: Danny Puckett (dpuckett_at_comresource.com)
Date: 11/30/04
- Previous message: Don Parker: "Re: how do i read this IDS log?"
- Maybe in reply to: Mark Spencer: ""Secure" Web Hosting?"
- Next in thread: james_love_at_agilent.com: "RE: "Secure" Web Hosting?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Mon, 29 Nov 2004 22:45:51 -0500 To: <security-basics@securityfocus.com>
You can check out www.secdog.com for secure web hosting
If you want to do it yourself I highly recommend you give OpenBSD a shot.
Its very easy to get it up and running serving web pages securely. The nice
thing is that its already locked down pretty tight from the default install so you
don't have to worry about securing it too much once installed like you would
a Windows box.
________________________________
From: Gaspar de Elías [mailto:gaspar.delias@gmail.com]
Sent: Sun 11/28/2004 9:12 PM
To: Germano, Tomas
Cc: Mark Spencer; security-basics@securityfocus.com
Subject: Re: "Secure" Web Hosting?
Dear Mark:
There is something that we shouldn't forget about: Linux is as secure
as you want it to be, so i agree with Tomas Germano, i think we should
use an OS that make us comfortable.
If you feel comfortable using Linux,BSD, or windows or whatever use
it, but it's not a good idea to learn while your server´s security is
in risk.
Windows has a lot of security flaws, but if you install all new
patches you won't have mayor trouble. On linux you can have better
control on your ports, applications, but you have to know how to deal
with it.
I would recommend you Mark to use Linux if you feel you can handle it.
Actually i'm still learning linux, but it's great.
Thanks for your time.
Gaspar de Elias
Cordoba, Argentina
On Fri, 26 Nov 2004 09:52:32 -0300, Germano, Tomas
<tgermano@metrovias.com.ar> wrote:
> I think that you mount an Apache Web Server on a Windows 2000 or 2003 (I
> don´t know if Apache work on W2003) and you secure the Operative Sistem, you
> are fine or more secure that usind IIS.
>
> I don´t test IIS 6.0 over 2003
>
> Sorry for my English
>
> Tomas A Germano
> Analista de Seguridad
> Metrovias.
> Argentina
>
> -----Mensaje original-----
> De: Mark Spencer [mailto:mspencer@evidentdata.com]
> Enviado el: Miércoles 24 de Noviembre de 2004 11:49
> Para: security-basics@securityfocus.com
> Asunto: "Secure" Web Hosting?
>
>
>
>
> Hello all,
>
> I'm looking for suggestions on web hosting providers that pay particular
> attention to security issues, e.g. hardening networks, servers, and
> applications.
>
> On a somewhat related note, if I wanted to host a web server myself,
> what is the recommended platform for getting a web server online in a
> secure and intuitive fashion? I know that OpenBSD has an excellent
> reputation, but may be difficult to setup for someone that hasn't spent
> much time with BSD. What about EnGarde Linux?
>
> Thanks!
>
> Mark
>
>
> El contenido de este mail y cualquier archivo adjunto son confidenciales.
> Está dirigido solo a los destinatarios. Cualquier divulgación, distribución
> o copia de esta comunicación o cualquiera de sus contenidos está prohibida.
> Si Ud. ha recibido este mail por error por favor reenvíelo al remitente
> inmediatamente, borre el original y cualquier copia que resida en su
> computadora.
>
>
-- Gaspar de Elías
- Previous message: Don Parker: "Re: how do i read this IDS log?"
- Maybe in reply to: Mark Spencer: ""Secure" Web Hosting?"
- Next in thread: james_love_at_agilent.com: "RE: "Secure" Web Hosting?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
