From owner-freebsd-questions@FreeBSD.ORG  Wed Sep 21 21:24:21 2005
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
X-Original-To: freebsd-questions@freebsd.org
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 615F516A41F
	for <freebsd-questions@freebsd.org>;
	Wed, 21 Sep 2005 21:24:21 +0000 (GMT)
	(envelope-from gerard@seibercom.net)
Received: from smtp1.suscom.net (smtp1.suscom.net [64.78.119.248])
	by mx1.FreeBSD.org (Postfix) with ESMTP id D6AF543D45
	for <freebsd-questions@freebsd.org>;
	Wed, 21 Sep 2005 21:24:20 +0000 (GMT)
	(envelope-from gerard@seibercom.net)
Received: from localhost (smtp1 [127.0.0.1])
	by smtp1.suscom.net (Postfix) with ESMTP id 9D0FFD8CB1
	for <freebsd-questions@freebsd.org>;
	Wed, 21 Sep 2005 17:24:15 -0400 (EDT)
Received: from smtp1.suscom.net ([127.0.0.1])
	by localhost (smtp1 [127.0.0.1]) (amavisd-new, port 10024) with SMTP
	id 16192-01 for <freebsd-questions@freebsd.org>;
	Wed, 21 Sep 2005 17:24:07 -0400 (EDT)
Received: from seibercom.net (ip148.217.susc.suscom.net [216.45.217.148])
	by smtp1.suscom.net (Postfix) with SMTP id B005BD8A9F
	for <freebsd-questions@freebsd.org>;
	Wed, 21 Sep 2005 17:24:07 -0400 (EDT)
Received: from [192.168.0.2] ([192.168.0.2])
	by seibercom.net (8.13.4/8.13.3) with ESMTP id j8LLO6BJ012368
	for <freebsd-questions@freebsd.org>;
	Wed, 21 Sep 2005 17:24:06 -0400 (EDT)
	(envelope-from gerard@seibercom.net)
Date: Wed, 21 Sep 2005 17:24:08 -0400
From: Gerard Seibert <gerard@seibercom.net>
To: freebsd-questions@freebsd.org
Sender: gerard@seibercom.net
Organization: Seibercom.net
In-Reply-To: <4331A3EA.8030502@gmail.com>
References: <4331A3EA.8030502@gmail.com>
Message-Id: <20050921172143.7430.GERARD@seibercom.net>
MIME-Version: 1.0
Content-Type: text/plain; charset="UTF-8"
X-Mailer: Becky! ver. 2.22.01 [en]
Content-Transfer-Encoding: quoted-printable
X-Virus-Scanned: by amavisd-new .250  at suscom.net
Subject: Re: My first public website - how to secure it for use?
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
Reply-To: freebsd-questions@freebsd.org
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Wed, 21 Sep 2005 21:24:21 -0000

On Wed, 21 Sep 2005 11:18:18 -0700, Derrill Guilbert <derrill@gmail.com>
Subject: My first public website - how to secure it for use?
Wrote these words of wisdom:

> I am grateful for all the assistance I've received to date from this=20
> list ... I'm going through a bunch of baptism by fire stuff on FreeBSD =
-=20
> I've used it for basic file sharing, intranet stuff, EASY stuff before.=
=20
> Now, however, I keep getting asked for more robust things.
>=20
> We have been having some ... disagreements with our webhost. Basically,=
=20
> we want him to enable password protection on a site, and he doesn't wan=
t=20
> to figure out how to do it. I emailed him everything he needs, but he=20
> can't be arsed, apparently. I even asked him to email me his config fil=
e=20
> and I'd update it and send it back - he could then diff it and then=20
> update it based on my changes. What would it be, five lines? 10? It=20
> wouldn't be much, based on apache's site. Still, no response.
>=20
> Because of our unique relationship with him, my boss feels like the bes=
t=20
> alternative for now would be having me put up a webserver based on=20
> FreeBSD. It'll need PHP and MySQL, which I think I can figure out.
>=20
> I've run apache sites before - 1996 - 2000 I was part of the IT staff o=
f=20
> a small website building/hosting company. However, I've never set a box=
=20
> up for internet use myself, and the internet is a vastly different=20
> (read: more hostile) place than it was then. This box is basically goin=
g=20
> to be on its own on the internet. Is it enough to run a firewall like p=
f=20
> and go through the steps outlined at=20
> http://www.bsdguides.org/guides/freebsd/security/harden.php before=20
> putting it up to be assaulted?
>=20
> Derrill


***** REPLY SEPARATOR *****
On 9/21/2005 5:21:43 PM, Gerard Seibert Replied:

Are you sure about the URL? I cannot seem to get it to connect.

--=20
Gerard Seibert
<gerard@seibercom.net>


     (\___/)   (\___/)   (\___/)   (\___/)   (\___/)   (\___/)
     /0\ /0\   /o\ /o\   /0\ /0\   /O\ /O\   /o\ /o\   /0\ /0\
     \__V__/   \__V__/   \__V__/   \__V__/   \__V__/   \__V__/
    /|:. .:|\ /|;, ,;|\ /|:. .:|\ /|;, ,;|\ /|;, ,;|\ /|:. .:|\
    \\:::::// \\;;;;;// \\:::::// \\;;;;;// \\;;;;;// \\::::://
jgs--`"" ""`---`"" ""`---`"" ""`---`"" ""`---`"" ""`---`"" ""`---
^~^^~^~^~^~^^~~^^^~^~~^~^~^~^^~~^^^~^~~^~^~^~^^~~^^^~^^~^~^~^^~~^^