The W
Views: 101398423
Main | FAQ | Search: Y! / G | Calendar | Color chart | Log in for more!
18.12.14 1336
The W - Random - Apache and PHP help
This thread has 2 referrals leading to it
Register and log in to post!
Pages: 1(2601 newer) Next thread | Previous thread
User
Post (5 total)
anibanging
Italian








Since: 5.3.02

Since last post: 2073 days
Last activity: 119 days
#1 Posted on
I have two little questions.

I've installed apache on my computer so that I could test out some php scripts I'm writing locally. I'm a super newbie when it come to this stuff and I was wondering how vulnerable this makes my computer to internet bad guys and what I can do to just keep my computer local instead of being out there for anyone on the web.

Also does anyone know a place where i can host a few php scripts for free?
Promote this thread!
tarnish
Frankfurter








Since: 13.2.02
From: Back in the Heart of Hali

Since last post: 557 days
Last activity: 47 min.
AIM:  
Y!:
#2 Posted on | Instant Rating: 7.03

You have two little questions that require a whole bunch more questions before they can be answered:

1. what operating system are you running?
2. what kind of internet connection do you have?
3. is this your main computer or just a beater box?
4. do you have a firewall?

Even if you're running under Windows, I'm pretty sure you can tell Apache to only answer requests originating from localhost (i.e. 127.0.0.1) in httpd.conf. Mind you that doesn't keep someone from exploiting Apache/PHP if they've already rooted your box, but if you're worried about Apache/PHP being the weak link, run it on a non-standard port answering only to localhost.

There are still too many variables to give you a firm answer, though. Give a better idea of what your setup is and I (or someone smarter) can give you a better answer.




/tarnish...

Did you walk to school or bring a lunch?
Guru Zim
SQL Dejection
Administrator








Since: 9.12.01
From: Bay City, OR

Since last post: 2 days
Last activity: 13 hours
AIM:  
ICQ:  
Y!:
#3 Posted on
This site pops up in a few searches on Google for free php hosting.

http://www.dk3.com/hosting/

You might want to just try the google search and see what you like. I don't know what you are trying to host, so DK3 may not work for you.



Willful ignorance of science is not commendable. Refusing to learn the difference between a credible source and a shill is criminally stupid.
anibanging
Italian








Since: 5.3.02

Since last post: 2073 days
Last activity: 119 days
#4 Posted on

    Originally posted by tarnish

    You have two little questions that require a whole bunch more questions before they can be answered:

    1. what operating system are you running?
    2. what kind of internet connection do you have?
    3. is this your main computer or just a beater box?
    4. do you have a firewall?





Yep. More info always helps.

1. I'm running Windows 2KPro
2. I have a ADSL connection
3. It's very much my main computer
4. No Firewall.

Checking my logs so far I've already come across a few code red worms trying to penetrate me. But as far as I understand, that only affects Windows servers.
I will try to set the server to only accept access from localhost and set up the non-standrard port. Thanks for the help.

And Guru, thanks for the heads up on dk3. so far all the php enabled hosts I've found don't support the mail(); command which is all I really need them for.
I just want to host a single script that will put info from a POST command from an autorun CD I'll be distributing into and email and send it to me.

And by the way, autoplay media studio is the coolest program I've ever come across.
tarnish
Frankfurter








Since: 13.2.02
From: Back in the Heart of Hali

Since last post: 557 days
Last activity: 47 min.
AIM:  
Y!:
#5 Posted on | Instant Rating: 7.03

I guess nobody smarter has time to answer...

Last I checked, Windows2000 has some facility for limiting incoming connections. I would suggest using this facility or something like Norton Personal Firewall; if this is your main machine, that means most of your important data is probably on it...

I'd definitely make sure that at least while you're testing things that you've got Apache listening only for connections from localhost. Running it on a non-standard port can't hurt either. You can set these in your httpd.conf (or whatever the windows equivalent is) file.

I'd also do a search on google for something like "Windows 2000 securing PHP" and see what you find.

Lastly, the reason nobody supports mail() is because it's way way way easy to use it to DOS. I'd say that doubles your reasons for making sure your box is locked down.

Hope that helps some.



/tarnish...

Did you walk to school or bring a lunch?
Pages: 1Thread ahead: Anthem Etiquette
Next thread: Adult Swim Week 4
Previous thread: The Return of Bob Ryan
(2601 newer) Next thread | Previous thread
I'm guessing it doesn't work. I've not used it, but vibrating exercise machines have been around for years (I know my grandparents had one in the 70s, and have seen them in movies going back to the 30s)
- Mike Zeidler, Anybody tried T-Zone? (2011)
The W - Random - Apache and PHP helpRegister and log in to post!

The W™ message board

ZimBoard
©2001-2014 Brothers Zim

This old hunk of junk rendered your page in 0.142 seconds.