[137048] in North American Network Operators' Group
Re: WebServer and Firewall Help
daemon@ATHENA.MIT.EDU (Joshua Klubi)
Tue Feb 8 15:01:08 2011
In-Reply-To: <4D513549.8020307@emmanuelcomputerconsulting.com>
From: Joshua Klubi <joshua.klubi@gmail.com>
Date: Tue, 8 Feb 2011 20:00:55 +0000
To: William Warren <hescominsoon@emmanuelcomputerconsulting.com>
Cc: "nanog@nanog.org" <nanog@nanog.org>
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org
It is a LAMP. Stack
Joshua=20
Sent from my iPhone
On Feb 8, 2011, at 12:21, William Warren <hescominsoon@emmanuelcomputerconsu=
lting.com> wrote:
> On 2/7/2011 1:23 PM, Joshua William Klubi wrote:
>> Hi,
>>=20
>> I run a web-server based on ubuntu server and the LAMP stack.
>> I used Ubuntu's UFW firewall model and have enabled only Web and SSH port=
s.
>> Namely port 80 and port 22 only.
>>=20
>> Unfortunately once a while some guys get to inject some content onto our w=
eb
>> pages.
>>=20
>> Now managements are looking at getting a well proven infrastructure to
>> counter that.
>> But I also think i can fall on this community to help me get the right st=
uff
>> done. Where
>> i can protect the server from such attack.
>>=20
>>=20
>> I want to know what measure i can do on the server to get it protected wh=
ich
>> mysql protection
>> I should implement. since i can see that it might be a php or mysql
>> injection that is been used.
>>=20
>> Currently I run these security measures on it.
>> Ubuntu UFW
>> Fail2ban
>> PHP model security
>> Apache security
>>=20
>> Joshua
> the problem may not be your operating system but the web application runni=
ng. what web application/s are on that box?
>=20
