Securing XAMPP

Problems with the Windows version of XAMPP, questions, comments, and anything related.

Securing XAMPP

Postby mbennion » 04. October 2017 15:19

I completely understand that XAMPP is meant for testing/development. However I'm a research student and need to run my server on the internet in order to test it with users.

I've recently had a host of anti-sec bots searching my server for exploits and I'd really like to tighten XAMPP up as much as possible.

Does anyone have any advice? (other than not using XAMPP)
Posts: 1
Joined: 04. October 2017 15:12
XAMPP version: 5.6.30-0
Operating System: Windows 10

Re: Securing XAMPP

Postby two_socks » 04. October 2017 16:45

I think with hardening Xampp you mean hardening the services you are going to use (Apache, Mysql, etc...)
I'm not sure, but if you simply improve the service's configuration file (adding proper rules) and the server machine (i.e. firewall, kernel etc...) you should reach your target.
Posts: 6
Joined: 04. October 2017 16:13
XAMPP version: 7.1.9
Operating System: windows 7

Re: Securing XAMPP

Postby Nobbie » 04. October 2017 18:01

mbennion wrote:I completely understand that XAMPP is meant for testing/development.

Yes, but for local development only. Xampp is not meant for running online.
Posts: 11674
Joined: 09. March 2008 13:04

Re: Securing XAMPP

Postby Altrea » 04. October 2017 18:16

I'd say "do not use XAMPP". Don't install a security hole and try to close it down; instead, start with nothing and gradually install & open up what's needed. Apache, MySQL, PHP all have standalone Windows builds. – grawity Feb 2 '15 at 13:26

So true.

Reference: ... 893_872643
We don't provide any support via personal channels like PM, email, Skype, TeamViewer!

It's like porn for programmers 8)
User avatar
AF Moderator
Posts: 10338
Joined: 17. August 2009 13:05
XAMPP version: several
Operating System: Windows 10 Pro x64

Return to XAMPP for Windows

Who is online

Users browsing this forum: No registered users and 38 guests