Apache Friends Support Forum


https://community.apachefriends.org/f/

Making My XAMPP Website Safe

https://community.apachefriends.org/f/viewtopic.php?f=16&t=15908

Page 1 of 1

Making My XAMPP Website Safe

PostPosted: 03. February 2006 20:51
by Adam Harper
Well i have a few questions on how i should go about in making my website more safe.


Well first off i'm some what new to XAMPP and the seach thingy dont seem to be working for me so anyways sorry if this has been asked alrdy.

My problem that makes me ask this question.

Well i have hade my problems fixed with my website with my router problems i was having and now anyone can view my site but today i go to load up my web browser and i dont see my home page of my website but a user name and password box pops up.....someone made it so that i have to have a password and username to see the website i have made now? before i did not need to do this my website would just load for me and to others.

I have filled out the;

Security console MySQL & XAMPP directory protection

with a MYSQL SECTION: "ROOT" PASSWORD

i have made a password for this with the root for the username and also made a XAMPP DIRECTORY PROTECTION (.htaccess)

i did this at this url;

http://localhost/security/xamppsecurity.php

So did i forget to protect something? how was someone able to make it so that you have to type a username and password out to get to my site?


What are the steps i should follow when first setting up XAMPP for a website server? so it like 99% safe?

Thanks and sorry if this does not make much sense.

Thanks again,
Adam Harper

PostPosted: 03. February 2006 22:44
by Adam Harper
Well i figured out why my website was asking for a password cause i was trying to get into my router setup page cause my mom restarted the router and setted the router to the default settings thus closing my ports so i just hade to reopen them.


But i would still would like to know the steps i should take to make my XAMPP server safe.

PostPosted: 03. February 2006 23:03
by keisko
Always use up-to-date softwares *That means, update your softwares which is for your website.

PostPosted: 06. February 2006 15:41
by Adam Harper
What i was looking for was like some security tips and steps in making my XAMPP more safer for me, such as unwanted intruders that may do things to my server that i do not wish.

PostPosted: 06. February 2006 15:47
by KingCrunch
This depends more on your system-configuration, then the Apache,... -configuration

PostPosted: 09. February 2006 05:18
by SeanO
If you follow the standard procedures then the site is secure. You should only allow what is needed through the router, normally 80 for http, 25 and 110 for e-mail and that's it. Usually people don't use IMAP or https so you don't need those ports opened.

The settings in Apache are very restrictive by default.

PostPosted: 09. February 2006 17:51
by keisko
Adam Harper wrote:What i was looking for was like some security tips and steps in making my XAMPP more safer for me, such as unwanted intruders that may do things to my server that i do not wish.


You should use: mod_security.. here u go: http://www.modsecurity.org/ Its best way to protect your base from hackers/hack attempts.
All times are UTC + 1 hour
Page 1 of 1
Powered by phpBB® Forum Software © phpBB Group
https://www.phpbb.com/