Apache Friends Support Forum

[[Dimetrodon]]

Hello.

This is less of a support topic and more of a general inquiry.

I probably have a pretty dumb setup here, but I am using XAMPP on a public server. It's a six year old desktop with what is basically a blog site being hosted on it. My site is public but I have blocked off vital areas like phpmyadmin and the dashboard with .htaccess files. I simply remove them temporary when I need to ever access those areas. Is there anything else I should probably do to secure it? I probably should have used WAMP (or something else) but I really do not want to start from scratch, especially when my site is up and running.

Thanks.

[Altrea]

Hi,

=> [INFO] How to not fail getting help here

Scope of support

Evaluate if your topic is in scope of support of our board. We don't want to provide...

[...]

• ...support for live, production or public accessible environments.
  XAMPP is not configurated for such environments (default passwords, many activated and probably unnecessary modules, not tweaked for performance, scalability, stability or security). This board does have several entrys about hacked XAMPP installations because of using unprotected XAMPP installations in not supported environments. XAMPP don't want to fit every possible use case and there are other (also free) alternatives for such environments.

[...]

[[Dimetrodon]]

I read that soon after I submitted this.