View previous topic :: View next topic |
Author |
Message |
cokacola650 -
Joined: 15 Mar 2004 Posts: 11
|
Posted: Wed Mar 17, 2004 8:24 am Post subject: Virus? |
|
|
I did a stealth scan at a few differnt website and it came back and told me port 80 was open. This didnt suprise me, as Abyss is running through there, but it then said that a misconfigured webserver is an easy target for hackers. So how do i make sure im not an "easy kill"?
Thanks,
cokacola650 |
|
Back to top |
|
|
olly86 -
Joined: 25 Apr 2003 Posts: 993 Location: Wiltshire, UK
|
Posted: Wed Mar 17, 2004 12:28 pm Post subject: |
|
|
These are some general points:
Abyss web server is already secure.
It is an easy target for hackers if you run an unpatched Apache, or IIS servers. Also ensure you are running the most recent version of Abyss web server.
other security notes:
if run php, perl, or asp scripts, a poorly written one may provide the user with a user name and password for your database server (eg: MySQL). However this is not a problem if you have set it up like mine so it will only accept connections on your localhost ip (ie: 127.0.0.1).
if I’ve missed something could someone else point this out, thanks _________________ Olly |
|
Back to top |
|
|
cokacola650 -
Joined: 15 Mar 2004 Posts: 11
|
Posted: Wed Mar 17, 2004 6:31 pm Post subject: hanks, |
|
|
looks im good to go, since i dont have a mysql database working yet.
thanks,
cokacola650 |
|
Back to top |
|
|
iNaNimAtE -
Joined: 05 Nov 2003 Posts: 2381 Location: Everywhere you're not.
|
Posted: Thu Mar 18, 2004 11:39 pm Post subject: |
|
|
And even if Abyss is secure, make sure there aren't other problems (like the infamous "NetBIOS [port 137]"). _________________ Bienvenidos! |
|
Back to top |
|
|
|