Security of local Apache server

[cornishpirate]

My desktop development environment is Apache via XAMPP.

 

It hadn't occurred to me that this might be subject to hack attacks, until I examined my local Apache logs.

 

A little research found the following:

 

“You should make the following configuration changes in your Windows Firewall, because by default all the XAMPP

services and process are added to the firewall as unblocked, i.e., the “Any computer (including those on the internet)”

is selected as having access to the components:

 

1. Go to Control Panel > Windows Firewall > Exceptions (tab). 2. Select a given XAMPP component

in the list, then click Edit 3. Then click Change Scope. 4. Then change it to “My Network (subnet only)”.”

[spooks]

You don`t really rely on the Windows Firewall do you!!

 

Independant tests find it leaky as a sieve (failed all tests to my memory).

 

Get a real firewall, & chuck that ms c..... in the bin.

[php_Guy]

You don`t really rely on the Windows Firewall do you!!

 

Independant tests find it leaky as a sieve (failed all tests to my memory).

 

Get a real firewall, & chuck that ms c..... in the bin.

 

Any recommendations for which firewalls are good and which ones aren't? I'm using Black Ice Defender but it's quite old and should be updated at least.

[spooks]

Any recommendations for which firewalls are good and which ones aren't? I'm using Black Ice Defender but it's quite old and should be updated at least.

 

 

I believe kaspersky is the current leader, in anti-viri too. You can't beat a hardware firewall though.

 

Jetico & Zone Alarm Pro do well too.

[♥Vger]

If you have a broadband Router (not USB) then this will have its own hardware firewall built in. Using this hardware firewall with the Windows software firewall we've never had anything nasty get through.

 

Vger

[GemRock]

only if you:

1. have a static ip;

2. have only a modem be it dialup or broadband between pc & isp;

3. or use it as a live server;

4. people know your static ip.

then you may have to think/do something about it.

in other words, if you:

1. have a dynamic ip; or

2. have a static ip but no one knows it;

3. have at least one router sitting between pc & isp;

then your ip only leads to your broadband router, not your pc, and i dont think you need to worry about it, unless you boast it on hackers forum that your pc/local server is unbreakable, then there are always people who are either boring to death or keen to prove you wrong.

 

Ken

My desktop development environment is Apache via XAMPP.

 

It hadn't occurred to me that this might be subject to hack attacks, until I examined my local Apache logs.

 

A little research found the following:

[♥Vger]

A combination of AVG Pro, plus hardware and software firewalls should be sufficient for anyone.

 

The only other solution is to unplug the PC, throw it out of the window and forget the internet revolution completely.

 

Vger

[spooks]

A combination of AVG Pro, plus hardware and software firewalls should be sufficient for anyone.

 

The only other solution is to unplug the PC, throw it out of the window and forget the internet revolution completely.

 

Vger

 

 

Yes, like I said 'You can't beat a hardware firewall', if you have that nothing should ever reach your software firewall, its then there for outgoing only.