Try to make sure that the server is running as few services as necessary to function. If you want to expose it to the web just make sure everything but 80 is filtered, as Petri said. Apache also has a couple of suggested security practices here: http://httpd.apache.org/docs/2.0/misc/security_tips.html
<http://httpd.apache.org/docs/2.0/misc/security_tips.html>There's even more stuff out there about hardening Apache - just google for it. If you're literally just using the box as a place to store files that you want to reference in forum posts etc., then you'll be fine as long as you keep Apache/MySQL/PHP up to date and disable/block everything else at the firewall. Actually, for a simple file store do you need PHP and MySQL? If not, you could just remove them. On Mon, Apr 11, 2011 at 4:26 PM, Joe Fruchey <[email protected]> wrote: > Our main website is hosted by Red Stick, but I want an easy way to throw > big or weird files up on the web and reference them from a post. I have an > Ubuntu 10.04 LTS box that I have running as a basic LAMP server. What > security settings do I need to check before exposing this bad boy to the > www? > > Also, I'd like our web person to be able to upload files via SMB so I can > just map a drive for her. Can I do that, but restrict access to her IP? > > Thanks. > > Joe > > _______________________________________________ > General mailing list > [email protected] > http://brlug.net/mailman/listinfo/general_brlug.net > > -- "The world's my oyster, a hotel room's my prison cell..."
_______________________________________________ General mailing list [email protected] http://brlug.net/mailman/listinfo/general_brlug.net
