Date: Wed, 19 Jan 2005 22:05:40 -0800 From: Jay O'Brien <jayobrien@att.net> To: FreeBSD - questions <questions@freebsd.org> Subject: Re: Security for webserver behind router? Message-ID: <41EF4A34.4020808@att.net> In-Reply-To: <1493773909.20050120042307@wanadoo.fr> References: <41EE0A7B.0@att.net> <200501200009.01258.list-freebsd-2004@morbius.sent.com> <41EF1C10.2090106@att.net> <1493773909.20050120042307@wanadoo.fr>
next in thread | previous in thread | raw e-mail | index | archive | help
Anthony Atkielski wrote: > Jay O'Brien writes: > > JOB> Thanks, but what I want to know is what risk I have with port 80, > JOB> and only port 80 open. > > The risk depends on Apache, since that's the daemon answering the phone > when someone calls in on port 80. > > Just make sure you're using the latest version of Apache (1.3.33, if you > want the 1.x version, or 2.0.52, if you want the 2.x version). Some > earlier versions are vulnerable. As long as Apache is secure, port 80 > can be open. > I am running Apache 1.3.33, as you suggest I should. You say "as long as Apache is secure"; what should I do to be sure that Apache is secure? If there isn't a security risk with the FreeBSD system I've described, maybe this question belongs on the Apache mailing list, not here? Jay
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?41EF4A34.4020808>