From owner-freebsd-questions@FreeBSD.ORG Wed Sep 21 23:41:30 2005 Return-Path: X-Original-To: freebsd-questions@freebsd.org Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 2DA8B16A41F for ; Wed, 21 Sep 2005 23:41:30 +0000 (GMT) (envelope-from cpetrovi@purdue.edu) Received: from mail.sackofcheese.com (12-208-107-93.client.insightBB.com [12.208.107.93]) by mx1.FreeBSD.org (Postfix) with ESMTP id 9478B43D45 for ; Wed, 21 Sep 2005 23:41:29 +0000 (GMT) (envelope-from cpetrovi@purdue.edu) Received: from [192.168.0.98] (alloy.sackofcheese.com [192.168.0.98]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by mail.sackofcheese.com (Postfix) with ESMTP id 2F83695819 for ; Wed, 21 Sep 2005 18:41:30 -0500 (EST) Message-ID: <4331EFAB.6070001@purdue.edu> Date: Wed, 21 Sep 2005 18:41:31 -0500 From: Chris Petrovitch User-Agent: Mozilla Thunderbird 1.0 (Windows/20041206) X-Accept-Language: en-us, en MIME-Version: 1.0 To: freebsd-questions@freebsd.org References: <4331A3EA.8030502@gmail.com> <20050921172143.7430.GERARD@seibercom.net> In-Reply-To: <20050921172143.7430.GERARD@seibercom.net> Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: 7bit Subject: Re: My first public website - how to secure it for use? X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 21 Sep 2005 23:41:30 -0000 Gerard Seibert wrote: >On Wed, 21 Sep 2005 11:18:18 -0700, Derrill Guilbert >Subject: My first public website - how to secure it for use? >Wrote these words of wisdom: > > > >>I am grateful for all the assistance I've received to date from this >>list ... I'm going through a bunch of baptism by fire stuff on FreeBSD - >>I've used it for basic file sharing, intranet stuff, EASY stuff before. >>Now, however, I keep getting asked for more robust things. >> >>We have been having some ... disagreements with our webhost. Basically, >>we want him to enable password protection on a site, and he doesn't want >>to figure out how to do it. I emailed him everything he needs, but he >>can't be arsed, apparently. I even asked him to email me his config file >>and I'd update it and send it back - he could then diff it and then >>update it based on my changes. What would it be, five lines? 10? It >>wouldn't be much, based on apache's site. Still, no response. >> >>Because of our unique relationship with him, my boss feels like the best >>alternative for now would be having me put up a webserver based on >>FreeBSD. It'll need PHP and MySQL, which I think I can figure out. >> >>I've run apache sites before - 1996 - 2000 I was part of the IT staff of >>a small website building/hosting company. However, I've never set a box >>up for internet use myself, and the internet is a vastly different >>(read: more hostile) place than it was then. This box is basically going >>to be on its own on the internet. Is it enough to run a firewall like pf >>and go through the steps outlined at >>http://www.bsdguides.org/guides/freebsd/security/harden.php before >>putting it up to be assaulted? >> >>Derrill >> >> > > >***** REPLY SEPARATOR ***** >On 9/21/2005 5:21:43 PM, Gerard Seibert Replied: > >Are you sure about the URL? I cannot seem to get it to connect. > > hum... it seems http://www.bsdguides.com/ is down?