I Need Advice
Page 1 of 2 12 LastLast
Results 1 to 10 of 11

Thread: I Need Advice

  1. #1
    Junior Member
    Join Date
    May 2002
    Posts
    15

    I Need Advice

    I manage 2 websites. One of which is on free webspace. Here if you want to check out the free one.

    The other is a professional business site and I need some tips to keep the site secure. Here for the professional one. Thanks for any help.

  2. #2
    AO Antique pwaring's Avatar
    Join Date
    Aug 2001
    Posts
    1,409
    In what way do you wish to secure them? The majority of security plans require server-side protection, and I doubt that you have access to the server for your free site.

    Provide more info and I'll do my best to help you out.
    Paul Waring - Web site design and development.

  3. #3
    Junior Member
    Join Date
    May 2002
    Posts
    15
    Hacker protection. Defacing protection. Secure transmissions (ie email, sensitive info, etc.). Just that kind of stuff.

  4. #4
    AO Antique pwaring's Avatar
    Join Date
    Aug 2001
    Posts
    1,409
    Do you have access to the server itself (i.e. you have dedicated hosting) or can you get your hosting company to switch on services such as SSH? All the stuff you want to do requires configuration on the server-side.
    Paul Waring - Web site design and development.

  5. #5
    Senior Member
    Join Date
    Apr 2002
    Posts
    380
    One way of securing your emails would be to have them encrypted by a CGI script.

    I think there is a sendmail version with PGP encryption available. I never really had to set it up but this is what I use at my business for internet orders. You can look at the following link :

    http://www.cgiextremes.com/Scripts/F...ing/page2.php3
    [shadow]Scorp666, the Infamous Orgasmatron[/shadow]

  6. #6
    Senior Member
    Join Date
    Apr 2002
    Posts
    380
    More CGI scripts, some with encryption

    http://www.mycgiscripts.com/resources/Form_Processing/
    [shadow]Scorp666, the Infamous Orgasmatron[/shadow]

  7. #7
    Senior Member
    Join Date
    Jan 2002
    Posts
    1,207
    If you want your site secure against defacement, make sure you use a server you have complete control over,
    take measures to prevent it being attacked by "skript kiddies" - i.e. keep it patched, turn off all unnecessary services, colo it somewhere with decent physical
    security and then make sure any applications you run (i.e. server-side) are written in a secure fashion.

    Don't trust third parties - ensure that your staff and partners have only as much access as necessary and audit their actions in a reasonable way. Ensure your policy permits only strong passwords (remember attacks are quite likely to come from within your organisation or a partner's). Lock out accounts when they're no longer needed.

    also bear in mind that you should still have a disaster recovery plan

  8. #8
    Senior Member
    Join Date
    Nov 2001
    Location
    Ireland
    Posts
    735
    Don't have your webserver running at root privilidges. If you are (which you probably aren't), I would advise to to change it to a severly permiisions-impaired luser acccount.

  9. #9
    Senior Member
    Join Date
    Nov 2001
    Location
    Ireland
    Posts
    735
    I forgot to add: Nice website!

  10. #10
    Flash M0nkey
    Join Date
    Sep 2001
    Posts
    3,447
    your creating business sites in cool page????
    and people pay you to do this?
    if so how much (if you don't mind me asking)

    /me gets ready to alter his web-design charges....hand coded html/dhtml and flash might be worth a bit more now

    v_Ln

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

 Security News

     Patches

       Security Trends

         How-To

           Buying Guides