Page 1 of 1

LAMP_in_Ubuntu is more secure than XAMPP_in_Ubuntu

PostPosted: 10. April 2010 17:48
by aimwin
Dear all XAMPP GURU,

I have been using XAMPP since it is in Windows.
Now I used Ubuntu.

At Ubuntu forum, there have been some comment that XAMPP is not secured and should not be used for LIVE WEBSITE.
( http://ubuntuforums.org/showthread.php?t=1440189 )
and claiming LAMP install in UBUNTU, (desktop) is more secured.

Is this true or not.

I wrote in http://ubuntuforums.org/showpost.php?p= ... stcount=17

Now to me XAMPP is more secure than default LAMP installation in Ubuntu,
BECAUSE:
1. SINCE XAMPP has security check, and the XAMPP did not say after you enable security you cannot use as LIVE WEBSITE.
ONLY THE DEFAULT INSTALLATION that is prohibit for LIVE WEBSITE.
(=Dear XAMPP Gurus, please verify the above comment)

2. LAMP in default installation in UBUNTU,
I cannot find the security check function as "/opt/lampp/lampp security" of XAMPP.

I suspect that I may be wrong.
Can some GURU on LAMP please verify this and please give us the security check command or function or program to do that in LAMP in UBUNTU.

And please comment further why LAMP_in_Ubuntu is more secure than XAMPP_in_Ubuntu.

Re: LAMP_in_Ubuntu is more secure than XAMPP_in_Ubuntu

PostPosted: 11. April 2010 13:39
by aimwin
One of the key staff in Ubuntu forum said in the post
http://ubuntuforums.org/showpost.php?p= ... stcount=19
----------------------------------------
If you install the LAMP stack and mod_security, you will end up with a much more secure web site than if you use XAMPP.
Have a look at this http://www.debuntu.org/2006/08/13/86-secure-your-apache2-with-mod-security.
You will also learn more about how things work, as I understand it, XAMPP uses control panels, this really doesn't allow you to learn how the system works.
...........................
Last edited by cariboo907; 6 Hours Ago at 01:25 AM.. Reason: added more info
----------------------------------------

Please help comment in the interest of the public.
I don't mean to look down or try to down grade any process or approach or software, but I need to clarify so the newbies and novice like me and other would know how, when and where to choose which package to use.

To me, for development purpose, ease of use and easy to install and maintain, XAMPP is the choice.

How ever for LIVE Web-server
which many small small business,
and individual,
who has limited resource, and knowledge (I look at the above apache mod-security website, and understand only the concept but not instruction).
it is our great concern that which way we should go.

And I would like to give a fair go to those who involve building XAMPP to help comment on the security matter of XAMPP Live Web-server application.
Thanks every one.