Re: [users@httpd] Compression and Security

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



Arthur Guy wrote:
I am not that familiar with apache, I usually use IIS and IIS instillations
need a patch and filters installed before they are used, I just wanted to
make sure there wasn't something I was missing with apache.

Thanks for the security links Aman I will check those out.


One other thing, I am looking for an ftp server to replace the one that
comes with IIS, is there a commonly used open source one, the equivalent of
apache for http. I have looked on several open source software directories but nothing stands
out.

Thanks
Arthur
arthur@xxxxxxxxxxxxxxxxxxxx
-----Original Message-----
From: Jean-Christophe Montigny [mailto:jcm@xxxxxxxxxxx] Sent: 26 June 2005 01:53
To: users@xxxxxxxxxxxxxxxx
Subject: Re: [users@httpd] Compression and Security

Hello,

Arthur Guy wrote:

Isn't it possible to compress images any further?

Try to compress 100Mb of JPEG pictures and see for yourself.


I guess I am not really sure what I am asking when it comes to security, I
have setup an apache server running parallel to my current IIS server but

on

port 8080. I want to switch them over but I would like to be sure that the

instillation

is secure, are there any problems with apache that I need to be worried
about? Are there any patches / configuration setups that need to be

applied?
What's the point in releasing stable versions if they need to be patched further... No, there isn't. Security issues raise from insecure (php, perl, ...) scripts and wrong permissions. If you merely deliver HTML files, and process nothing server-side (such as cgi or aforementioned scripts) then there is not much to do. It depends a lot on the distribution you use, too. But this list is no place for distro flames.


Arthur -

I have been using ProFTPd for quite a while now. It has an "apache-like" configuration file, meaning, it's broken down into directives and such. It's very nice, and I'm sure that many people here will also agree.

More info can be found at www.proftpd.org.

Thanks!
-dant


---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx
  "   from the digest: users-digest-unsubscribe@xxxxxxxxxxxxxxxx
For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx



[Index of Archives]     [Open SSH Users]     [Linux ACPI]     [Linux Kernel]     [Linux Laptop]     [Kernel Newbies]     [Security]     [Netfilter]     [Bugtraq]     [Squid]     [Yosemite News]     [MIPS Linux]     [ARM Linux]     [Linux Security]     [Linux RAID]     [Samba]     [Video 4 Linux]     [Device Mapper]

  Powered by Linux