The W
Views: 100054631
Main | FAQ | Search: Y! / G | Calendar | Color chart | Log in for more!
25.10.14 1837
The W - Random - Apache and PHP help
This thread has 2 referrals leading to it
Register and log in to post!
Pages: 1(2598 newer) Next thread | Previous thread
User
Post (5 total)
anibanging
Italian








Since: 5.3.02

Since last post: 2019 days
Last activity: 65 days
#1 Posted on
I have two little questions.

I've installed apache on my computer so that I could test out some php scripts I'm writing locally. I'm a super newbie when it come to this stuff and I was wondering how vulnerable this makes my computer to internet bad guys and what I can do to just keep my computer local instead of being out there for anyone on the web.

Also does anyone know a place where i can host a few php scripts for free?
Promote this thread!
tarnish
Frankfurter








Since: 13.2.02
From: Back in the Heart of Hali

Since last post: 503 days
Last activity: 2 days
AIM:  
Y!:
#2 Posted on | Instant Rating: 7.03

You have two little questions that require a whole bunch more questions before they can be answered:

1. what operating system are you running?
2. what kind of internet connection do you have?
3. is this your main computer or just a beater box?
4. do you have a firewall?

Even if you're running under Windows, I'm pretty sure you can tell Apache to only answer requests originating from localhost (i.e. 127.0.0.1) in httpd.conf. Mind you that doesn't keep someone from exploiting Apache/PHP if they've already rooted your box, but if you're worried about Apache/PHP being the weak link, run it on a non-standard port answering only to localhost.

There are still too many variables to give you a firm answer, though. Give a better idea of what your setup is and I (or someone smarter) can give you a better answer.




/tarnish...

Did you walk to school or bring a lunch?
Guru Zim
SQL Dejection
Administrator








Since: 9.12.01
From: Bay City, OR

Since last post: 1 day
Last activity: 1 day
AIM:  
#3 Posted on
This site pops up in a few searches on Google for free php hosting.

http://www.dk3.com/hosting/

You might want to just try the google search and see what you like. I don't know what you are trying to host, so DK3 may not work for you.



Willful ignorance of science is not commendable. Refusing to learn the difference between a credible source and a shill is criminally stupid.
anibanging
Italian








Since: 5.3.02

Since last post: 2019 days
Last activity: 65 days
#4 Posted on

    Originally posted by tarnish

    You have two little questions that require a whole bunch more questions before they can be answered:

    1. what operating system are you running?
    2. what kind of internet connection do you have?
    3. is this your main computer or just a beater box?
    4. do you have a firewall?





Yep. More info always helps.

1. I'm running Windows 2KPro
2. I have a ADSL connection
3. It's very much my main computer
4. No Firewall.

Checking my logs so far I've already come across a few code red worms trying to penetrate me. But as far as I understand, that only affects Windows servers.
I will try to set the server to only accept access from localhost and set up the non-standrard port. Thanks for the help.

And Guru, thanks for the heads up on dk3. so far all the php enabled hosts I've found don't support the mail(); command which is all I really need them for.
I just want to host a single script that will put info from a POST command from an autorun CD I'll be distributing into and email and send it to me.

And by the way, autoplay media studio is the coolest program I've ever come across.
tarnish
Frankfurter








Since: 13.2.02
From: Back in the Heart of Hali

Since last post: 503 days
Last activity: 2 days
AIM:  
Y!:
#5 Posted on | Instant Rating: 7.03

I guess nobody smarter has time to answer...

Last I checked, Windows2000 has some facility for limiting incoming connections. I would suggest using this facility or something like Norton Personal Firewall; if this is your main machine, that means most of your important data is probably on it...

I'd definitely make sure that at least while you're testing things that you've got Apache listening only for connections from localhost. Running it on a non-standard port can't hurt either. You can set these in your httpd.conf (or whatever the windows equivalent is) file.

I'd also do a search on google for something like "Windows 2000 securing PHP" and see what you find.

Lastly, the reason nobody supports mail() is because it's way way way easy to use it to DOS. I'd say that doubles your reasons for making sure your box is locked down.

Hope that helps some.



/tarnish...

Did you walk to school or bring a lunch?
Pages: 1Thread ahead: Anthem Etiquette
Next thread: Adult Swim Week 4
Previous thread: The Return of Bob Ryan
(2598 newer) Next thread | Previous thread
Having worked customer service for Verizon, I can honestly say I'm not shocked in the slightest
- Evil Antler God, Can you hear me now? (2004)
The W - Random - Apache and PHP helpRegister and log in to post!

The W™ message board

ZimBoard
©2001-2014 Brothers Zim

This old hunk of junk rendered your page in 0.144 seconds.