From owner-freebsd-questions  Tue Sep 28 15:25:26 1999
Delivered-To: freebsd-questions@freebsd.org
Received: from copland.udel.edu (copland.udel.edu [128.175.13.92])
	by hub.freebsd.org (Postfix) with ESMTP id 938C61582D
	for <freebsd-questions@freebsd.org>; Tue, 28 Sep 1999 15:25:24 -0700 (PDT)
	(envelope-from papalia@UDel.Edu)
Received: from morgaine.avalon.com (host75-157.student.udel.edu [128.175.75.157])
	by copland.udel.edu (8.9.3/8.9.3) with SMTP id SAA26716
	for <freebsd-questions@freebsd.org>; Tue, 28 Sep 1999 18:25:34 -0400 (EDT)
Message-Id: <4.1.19990928181842.0096b3f0@unix01.voicenet.com>
X-Sender: jpapalia@unix01.voicenet.com
X-Mailer: QUALCOMM Windows Eudora Pro Version 4.1 
Date: Tue, 28 Sep 1999 18:23:33 -0400
To: freebsd-questions@freebsd.org
From: John <papalia@UDel.Edu>
Subject: Apache, httpd, and security
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG

Hi all,

I was thinking of installing apache (probably the package named: 
apache+mod_ssl-1.3.9+2.4.2 unless someone recommends and reasons otherwise).

I was wondering:

- What security holes would this open in my system?
- Is it possible to shutdown all non-account access thru IPFW other than
http access?
- Best steps to take to ensure decent security if I go through with this?

Of course, if there's an install tutorial on this, I'd be more than willing
to read it if someone points me to it.

Thanks,
John


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message