| View previous topic :: View next topic |
| Author |
Message |
Isotonik
-
Joined: 29 Feb 2008
Posts: 5
|
 Posted: Thu Apr 24, 2008 9:45 am Post subject: Windows XP as a server - security? |
 |
|
I could not find any exhaustive explanation to this question.
I've read here, that people have successfully run Abyss in Windows XP. But how secure is Windows XP (Pro) as a web server, because it does not support file permissions? Does this mean, that the whole /htdocs-folder is exposed to all dubious inbound activities? |
|
| Back to top |
  |
 |
aprelium
-
Joined: 22 Mar 2002
Posts: 6800
|
| Posted: Thu Apr 24, 2008 1:32 pm Post subject: Re: Windows XP as a server - security? |
|
|
| Isotonik wrote: | I could not find any exhaustive explanation to this question.
I've read here, that people have successfully run Abyss in Windows XP. But how secure is Windows XP (Pro) as a web server, because it does not support file permissions? Does this mean, that the whole /htdocs-folder is exposed to all dubious inbound activities? |
Security depends a lot on the person administrating the system. Most security problems on Web server system come from the use of scripts having known flaws. Remote hackers will use these flaws to have the script inject code inside some files and then they will invoke these files to do more damage.
Windows XP is not bad per se and your data will not be exposed to anyone (unless you've configured the server to do so or you're running a script you do not trust or know what it does). XP supports file permissions (right click on any file and go to the security tab).
You can configure the files in htdocs to be read only and refuse to install scripts that you do not trust. It is also recommended to install the server in a restricted user account and apply the file system permissions to limit what that user has access to.
This is by the way the same security system that is used on Unix systems. Once again, XP is not bad but people using it do not observe the most obvious rules of security and then accuse the system of being "open to hackers". Even the most secure Unix system could be attacked if you have everyone able to read/write anything on the hard disk.
_________________
Support Team
Aprelium - http://www.aprelium.com |
|
| Back to top |
 |
|
rrinc
-
Joined: 24 Feb 2006
Posts: 725
Location: Arkansas, USA
|
| Posted: Thu Apr 24, 2008 11:25 pm Post subject: |
|
|
I use Windows XP on my server. Its just as secure as server 2003, but of course you can't leave any gaping holes in the configuration. I'd disable anything that allows remote access (other than web serving or possibly FTP). Make sure vectors are secured (good passwords, unnecessary things disabled, etc). A firewall isn't a bad idea, but isn't necessary.
_________________
-Blake | New Server :D
SaveTheInternet
Soy hispanohablante. Puedes contactarme por mensajes privados. |
|
| Back to top |
   |
|
AbyssUnderground
-
Joined: 31 Dec 2004
Posts: 3855
|
| Posted: Fri Apr 25, 2008 11:17 am Post subject: |
|
|
I ran Windows XP Pro for 2 years as a server, with no firewall and no anti-virus. The OS is still running today even though retired as a server.
_________________
Andy (AbyssUnderground) (previously The Inquisitor)
www.abyssunderground.co.uk |
|
| Back to top |
|
|
Nico
-
Joined: 07 May 2008
Posts: 1
|
| Posted: Wed May 07, 2008 2:14 am Post subject: |
|
|
The aprelium admin is right - security is really on the shoulders of the administrator and shouldn't really be blamed on the software, so it's smart to exercise best practices in security when setting up a server. Microsoft provides some good security guidelines on:
http://www.microsoft.com/hellosecureworld/level7 and after following those steps it's pretty easy to have a fairly strong server with Windows. |
|
| Back to top |
|
|
Rick Youngman
-
Joined: 30 Mar 2008
Posts: 5
Location: Arizona
|
| Posted: Fri May 09, 2008 4:23 am Post subject: |
|
|
I just find it irritating now.
I have been online since the days of the Commodore 64, and if "back then" if we managed to "hack" a site... at best, we would leave a message to the Sysop.... these days, the punks just want to seek and destroy everything they can crash.
It's really too bad, that the evolution of computer's have come so far to help mankind, that it has created such a destructive force of idiot's.
As an experienced SysOp, I just say this.... back-up often !! Expect the worse. It will happen one day. Be ready for it, and get back online ASAP, because that will discoruage a hacker quickly
_________________
Rick Youngman
Webmaster: Server64
Proudly Running Abyss !! |
|
| Back to top |
|
|
Lawrence
-
Joined: 16 Jan 2003
Posts: 207
Location: Brisbane, AU
|
| Posted: Sat May 10, 2008 8:56 am Post subject: |
|
|
Not every hacker wants to bring things down. I've been hacked before, and all that happened was they changed the main page of my site to include a 'u bin hacked' notice, along with an IRC channel to visit for instructions on fixing it.
Irritating, but I was safer afterwards. |
|
| Back to top |
 |
|
AbyssUnderground
-
Joined: 31 Dec 2004
Posts: 3855
|
| Posted: Sat May 10, 2008 8:43 pm Post subject: |
|
|
| Lawrence wrote: | Not every hacker wants to bring things down. I've been hacked before, and all that happened was they changed the main page of my site to include a 'u bin hacked' notice, along with an IRC channel to visit for instructions on fixing it.
Irritating, but I was safer afterwards. |
This isn't down to the operating system though, its down to the scripting used on the website.
_________________
Andy (AbyssUnderground) (previously The Inquisitor)
www.abyssunderground.co.uk |
|
| Back to top |
|
|
|
