Security Basics mailing list archives

Previous By Date Next
Previous By Thread Next

Betr.: RE: "Secure" Web Hosting?

From: "Philip Wagenaar" <p.wagenaar () accon nl>
Date: Tue, 30 Nov 2004 11:25:22 +0100
Also this:

If you choose for OpenBSD. And you get 'hacked'. You will need the knowledge of OpenBSD on how to track down what 
happend, how to fix it, and maybe also how to collect information for legal  steps against the hacker. For some (most?) 
companies it is better to stick with what they know instead of choosing a 'more secure platform' because it sounds more 
secure. But if things go wrong you can have a hard time restoring your systems. So don't just choose a platform because 
it might be more secure. Choose a platform that you can manage well. If you can manage a platform well it will me 
easier to secure.

Having a false sense of good security because you think everything is ok,  is worse then having a system that you know 
has flaws, but because of your knowledge in the product you can quarantine the flaws in it.



Met vriendelijke groet,

Philip Wagenaar
Junior Projectleider ICT

AccoN Accountants & Adviseurs
ICT Projecten & Advies
Postbus 5090
6802 EB Arnhem
The Netherlands

tel. +31 (0)26-3842384
fax. +31 (0)26-3630222
mobile: +31 (0)6-25388935
MSN/E-mail: p.wagenaar () accon nl
http://www.accon.nl



"Keith Bucknall" <keith.bucknall () zen co uk> 27-11-04 15:37 >>>

Apache works on windows 200x servers fine and I would recommend using this
instead of IIS..

----------------------------------------------------------------------------
--------------------------------------------------------------------------

 

Many thanks.....

Keith Bucknall

 

-----Original Message-----
From: Germano, Tomas [mailto:TGermano () metrovias com ar] 
Sent: 26 November 2004 12:53
To: 'Mark Spencer'; security-basics () securityfocus com 
Subject: RE: "Secure" Web Hosting?

I think that you mount an Apache Web Server on a Windows 2000 or 2003 (I
don t know if Apache work on W2003) and you secure the Operative Sistem, you
are fine or more secure that usind IIS.

I don t test IIS 6.0 over 2003

Sorry for my English

Tomas A Germano
Analista de Seguridad
Metrovias.
Argentina 

-----Mensaje original-----
De: Mark Spencer [mailto:mspencer () evidentdata com] 
Enviado el: Miércoles 24 de Noviembre de 2004 11:49
Para: security-basics () securityfocus com 
Asunto: "Secure" Web Hosting?


Hello all,

I'm looking for suggestions on web hosting providers that pay particular
attention to security issues, e.g. hardening networks, servers, and
applications. 

On a somewhat related note, if I wanted to host a web server myself,
what is the recommended platform for getting a web server online in a
secure and intuitive fashion?  I know that OpenBSD has an excellent
reputation, but may be difficult to setup for someone that hasn't spent
much time with BSD.  What about EnGarde Linux?  

Thanks!

Mark


El contenido de este mail y cualquier archivo adjunto son confidenciales.
Está dirigido solo a los destinatarios. Cualquier divulgación, distribución
o copia de esta comunicación o cualquiera de sus contenidos está prohibida.
Si Ud. ha recibido este mail por error por favor reenvíelo al remitente
inmediatamente, borre el original y cualquier copia que resida en su
computadora.



##################################################################

Dit e-mailbericht is uitsluitend bestemd voor de geadresseerde.
De informatie hierin is vertrouwelijk, zodat het derden niet is
toegestaan om daarvan kennis te nemen of dit te verstrekken aan
andere derden. Indien u dit e-mail bericht ontvangt terwijl het
niet voor u bestemd is, verzoeken wij u contact op te nemen met
de afzender en de informatie te verwijderen van iedere computer.
Bij voorbaat dank. 

==================================================================

The information transmitted in this e-mail is intended only for
the person or entity to which it is addressed and contains
confidential information. Any review, retransmission or other
use by persons or entities other than the intended recipient is
prohibited. If you received this in error, please contact the
sender and delete the material from any computer. Thank you. 

##################################################################

#####################################################################################
This e-mail message has been scanned for Viruses and Content and cleared 
by MailMarshal
#####################################################################################
Previous By Date Next
Previous By Thread Next

Current thread: