Security Basics mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Setting up secure HTTP server

From: "Steve" <securityfocus () delahunty com>
Date: Mon, 6 Oct 2003 13:59:25 -0400
Charley,

Consider hardening the box and running a hardened version of your web
server.  Something like Eeye's SecureIIS.  Microsoft has lockdown tools
also, IIS Lockdown.

Network Magazine had an article on Hardended Linux distributions:
http://www.networkcomputing.com/1312/1312f3.html

What exactly do you mean by "secure"?  Do you mean to protect the integrity
of the data?  Then if so you might want to consider intrusion detection on
the box.


-----Original Message-----
From: Charley Hamilton [mailto:chamilto () uci edu]
Sent: Friday, October 03, 2003 22:32
To: Security Basics Mailing List
Subject: Setting up secure HTTP server

All -

I'm looking for some good directions on setting up a "secure"
HTTP (not HTTPS) server.  Any particular suggestions of where
to hunt, since my googling has resulted in more answers than
minutes to even skip them all.

The purpose is to provide a server to permit sharing of
research data, and to provide web pages for our research group.

Thanks for any pointers/help you can offer.

Charley
-- 
Charles Hamilton, PhD EIT               Faculty Fellow
Department of Civil and                 Phone: 949.824.3752
     Environmental Engineering           FAX:   949.824.2117
University of California, Irvine        Email: chamilto () uci edu




------------------------------------------------------------------------
---
------------------------------------------------------------------------
----


---------------------------------------------------------------------------
----------------------------------------------------------------------------


---------------------------------------------------------------------------
----------------------------------------------------------------------------
Previous By Date Next
Previous By Thread Next

Current thread: