1
edit
Changes
→Patricia Constantino
[http://www.securityfocus.com/infocus/1694]http://www.securityfocus.com/infocus/1694
=Patricia Constantino=
- Did you have any problems with configuring PHP+Apache to be more secure. If you did then how did you resolve them?.
I didn't have any problem following the instructions in the book (I got more troubles with my Virtual Machine though) I got enough information about what to do and why, so as a conclusion I understand that all those steps are mainly to:
Avoid give unnecessary privileges to users.
Restrict the range of activity of unprivileged users.
Avoid the use of a server for general work process.
Open just the necessary ports and services.
Keep the system updated, getting in that way the patches and files that fix and solve potential security problems.
- Why you chose those security tips?
I consider that talking about security, the very common open ports are the most susceptible to attacks, so I decide to get more understanding in that area.
I got this book borrowed and it's good:
http://www.apachesecurity.net/
