 |
 |
Built-in Apache server?
|
|
|
|
|
Mac Enthusiast
Join Date: Jan 2002
Location: nj
Status:
Offline
|
|
I just started playing around with the built-in Apache server in OS X. What are some of the cons of using this to serve pictures or other documents? I imagine this leaves me open to attacks of some kind, but is it enough to be worried, and is there anything I can do to protect myself from viruses or attack?
|
|
|
| |
|
|
|
|
|
|
|
Mac Elite
Join Date: Mar 2001
Status:
Offline
|
|
Apache is the most popular web server on the internet.
If a security hole is discovered that needs to be addressed, Apple will include it in an OS update or in a security update. You don't really need to worry about Apache. Lately, things like ssh, ssl, and sendmail have been much bigger concerns.
|
|
|
| |
|
|
|
|
|
|
|
Posting Junkie
Join Date: Feb 2000
Location: Washington, DC
Status:
Offline
|
|
You should be (slightly) concerned as people do try to hack Apache... needless to say, few succeed with the way Apple reconfigured it (they turned on only the basics THANK GOD).
I would recommend using a firewall router between your system and your ISP (cable, dsl etc.)
Also, check out your log files every once and a while to see if there are any issues...
Just my 2¢
|
|
|
| |
|
|
|
|
|
|
|
Occasionally Useful
Join Date: Jun 2001
Location: Liverpool, UK
Status:
Offline
|
|
and when you check those logs, you'll possibly see a load of Nimda/CodeRed Worm hits.
you can fix that with a bit of scripting, as detailed here
|
|
"Have sharp knives. Be creative. Cook to music" ~ maxelson
|
| |
|
|
|
|
|
|
|
Mac Enthusiast
Join Date: Jan 2002
Location: nj
Status:
Offline
|
|
nice, thanks. what/where is the log file you're talking about? And, is the airport base station a sufficient router?
|
|
|
| |
|
|
|
|
|
|
|
Occasionally Useful
Join Date: Jun 2001
Location: Liverpool, UK
Status:
Offline
|
|
/private/var/log/httpd/access_log
can't help you on the Airport question, as i don't have one. sorry.
|
|
"Have sharp knives. Be creative. Cook to music" ~ maxelson
|
| |
|
|
|
|
|
|
|
Senior User
Join Date: Mar 2001
Location: Sitting in front of computer
Status:
Offline
|
|
Originally posted by tramahound:
is the airport base station a sufficient router?
That will work. Give your Mac a static IP and then map port 80 to it using the AirPort admin utility.
|
|
|
| |
|
|
|
|
|
|
|
Posting Junkie
Join Date: Feb 2000
Location: Washington, DC
Status:
Offline
|
|
Yes, check in /var/log/httpd for two files...
access_log and error_log...
Check error_log... there will be crap like...
[Thu May 23 15:06:28 2002] [error] [client 68.XX.XX.XX] File does not exist: /Library/WebServer/Documents/scripts/..%2f../winnt/system32/cmd.exe
[Thu May 23 15:53:40 2002] [error] [client 68.XX.XX.XX] File does not exist: /Library/WebServer/Documents/scripts/root.exe
[Thu May 23 15:53:41 2002] [error] [client 68.XX.XX.XX] File does not exist: /Library/WebServer/Documents/MSADC/root.exe
[Thu May 23 15:53:42 2002] [error] [client 68.XX.XX.XX] File does not exist: /Library/WebServer/Documents/c/winnt/system32/cmd.exe
[Thu May 23 15:53:43 2002] [error] [client 68.XX.XX.XX] File does not exist: /Library/WebServer/Documents/d/winnt/system32/cmd.exe
They are all going after IIS (Windows) servers...
|
|
|
| |
|
|
|
|
|
|
|
Clinically Insane
Join Date: Nov 1999
Status:
Offline
|
|
People do try to hack Apache on occasion, and once in a while someone succeeds. So keep up to date on your Apple software updates if you go this route, or learn to compile and install Apache yourself (which will get you patches to it even faster).
However, despite Apache's popularity, it's actually quite secure. Do be sure, however, that you're not running any other server software.
|
|
You are in Soviet Russia. It is dark. Grue is likely to be eaten by YOU!
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
 
|
|
|
Forum Rules
|
|
|
|
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
|
HTML code is Off
|
|
|
|
|
|
|
|
|
|
|
|
|
Top
