1. Welcome to TechPowerUp Forums, Guest! Please check out our forum guidelines for info related to our community.

What do you use for security?

Discussion in 'Programming & Webmastering' started by Solaris17, Mar 26, 2010.

  1. Solaris17

    Solaris17 Creator Solaris Utility DVD

    Joined:
    Aug 16, 2005
    Messages:
    17,265 (5.14/day)
    Thanks Received:
    3,600
    Location:
    Florida
    i was just wondering what you admins do for security? do you just run a windows server os with some AV? do you just close a bunch of ports? set all the dir and file permissions? what about you linux users? or CMS users? do you use CMs spacific security? how do you prevent SQL injections etc? a combination of the above?
     
    regexorcist says thanks.
  2. jasper1605

    Joined:
    Nov 6, 2009
    Messages:
    1,274 (0.70/day)
    Thanks Received:
    228
    Location:
    Ohio
    on my win7 pro I use avg free. And take the general approach of don't go to porn sites (more for moral reasons but my computer is equally happy about the change) where viruses run rampant :)
     
  3. Solaris17

    Solaris17 Creator Solaris Utility DVD

    Joined:
    Aug 16, 2005
    Messages:
    17,265 (5.14/day)
    Thanks Received:
    3,600
    Location:
    Florida
    are you talking about a desktop personal use PC? i was talking more about web hosting. and the security measures you take to make the site safe.
     
  4. Zebeon New Member

    Joined:
    May 1, 2009
    Messages:
    245 (0.12/day)
    Thanks Received:
    65
    Location:
    USA
    What kind of servers.....
    Webserver/email/sql/ect...

    General:
    A good AV and (spam filter if email)
    Keep patches up to date
    Run behind a router/FW close all un-needed ports/services and filter the open ports if possible.
    Strong passwords!
     
    Solaris17 says thanks.
  5. r9

    r9

    Joined:
    Jul 28, 2008
    Messages:
    2,144 (0.94/day)
    Thanks Received:
    284
    GUN under my pillow.
     
  6. Solaris17

    Solaris17 Creator Solaris Utility DVD

    Joined:
    Aug 16, 2005
    Messages:
    17,265 (5.14/day)
    Thanks Received:
    3,600
    Location:
    Florida
    um?
     
  7. Jizzler

    Jizzler

    Joined:
    Aug 10, 2007
    Messages:
    3,436 (1.30/day)
    Thanks Received:
    643
    Location:
    Geneva, FL, USA
    Patches/updates, strong passwords/prohibit weak encryption standards, limit hosts if you must connect to your SQL server remotely, check logs, don't be an open relay (email), etc.

    As for coding, test it out. I keep the error log tailed while coding and purposely try to break my scripts/system. For injection, since I code in PHP5 I use PDO. The bindValue and bindParam methods prevent injection when someone tries to do a "1; drop all tables;" or "secret_destroy_server_command();"

    If you're running someone else's scripts, pray that they knew what they were doing :D
     
  8. jasper1605

    Joined:
    Nov 6, 2009
    Messages:
    1,274 (0.70/day)
    Thanks Received:
    228
    Location:
    Ohio
    lol sorry, apparently I have SRD today (selective reading disorder) and only see and read what I want to see and read not the actual question.
     
  9. regexorcist

    regexorcist New Member

    Joined:
    Feb 1, 2010
    Messages:
    178 (0.10/day)
    Thanks Received:
    46
    Location:
    ~/
    I run an openBSD desktop with a samba file server (user based security)
    which is behind a router (NAT). May be adding a firewall next month.
     
    Solaris17 says thanks.
  10. Solaris17

    Solaris17 Creator Solaris Utility DVD

    Joined:
    Aug 16, 2005
    Messages:
    17,265 (5.14/day)
    Thanks Received:
    3,600
    Location:
    Florida
    does anyone strongly believe that running the site off of a VM is a pretty good way to keep baddies away?
     
  11. Easy Rhino

    Easy Rhino Linux Advocate

    Joined:
    Nov 13, 2006
    Messages:
    13,463 (4.64/day)
    Thanks Received:
    3,264
    i am not going to tell you! you will just hack me then!
     
    Mussels and Solaris17 say thanks.
  12. copenhagen69

    Joined:
    Jan 27, 2010
    Messages:
    3,927 (2.27/day)
    Thanks Received:
    1,243
    Location:
    USA
    lol ... you dont have proof this does not work ;)
     
  13. D007

    D007

    Joined:
    Mar 7, 2007
    Messages:
    3,226 (1.16/day)
    Thanks Received:
    438
    Location:
    Pompano beach, Florida
    I just have a link in my signature wherever I go.
    That leads to a pic of that kid, who got stabbed in the head with a knife, for cheating in CS.

    That or Kaspersky...hehe..

    Firewalls seem to do me more harm than good.
    Cause me more trouble than their worth.
    A good antivirus should do the trick by it's self.
     
  14. Zebeon New Member

    Joined:
    May 1, 2009
    Messages:
    245 (0.12/day)
    Thanks Received:
    65
    Location:
    USA
    Not sure about a Vm- It is a good idea, but nothing is totally safe-

    Alot depends on what types of site you are going to host.
    ex.. an e-commerce site that accepts CC and payments need to be alot safer than a personal page or such...

    What kind of site(s) are you hosting? is it on a server or machine running xp. Dedicated web server?
    Is it for a business or personal. -- do you need SSL?

    There are several things to do depending on budget and how much security you need.

    As before, A good start is to:
    A good AV and (spam filter if email)
    Keep patches up to date
    Run behind a router/FW close all un-needed ports/services and filter the open ports if possible.
    Strong passwords!

    Be as invisible on the internet as possible. The least amount of services and open ports you have the safer your sites will be.
    Even go as far as block all ICMP will keep network scans from picking up your ip as a valid address.

    Oh, and backup your site.... Just in case!! LOL
     
  15. Wrigleyvillain

    Wrigleyvillain PTFO or GTFO

    Joined:
    Oct 13, 2007
    Messages:
    7,667 (2.98/day)
    Thanks Received:
    1,775
    Location:
    Chicago
  16. regexorcist

    regexorcist New Member

    Joined:
    Feb 1, 2010
    Messages:
    178 (0.10/day)
    Thanks Received:
    46
    Location:
    ~/
    As a follow up, I've just enabled the openBSD native pf (packet filter) firewall.
    see link: http://en.wikipedia.org/wiki/PF_%28firewall%29

    It's normally installed and enabled right "out of the box" on openBSD,
    but I disabled it until I had some idea of how it worked.
     
  17. Oliver_FF

    Oliver_FF New Member

    Joined:
    Oct 15, 2006
    Messages:
    546 (0.19/day)
    Thanks Received:
    65
    Security through obscurity - use obscure usernames which contain numbers and swap to using non-standard ports for the important services (like SSH - get it off of port 22!). Its enough to keep the script kiddies away whilst still giving you access. Lets be honest - if a real criminal wants in to your server he's probably going to find some way in.
     
  18. imperialreign

    imperialreign New Member

    Joined:
    Jul 19, 2007
    Messages:
    7,043 (2.65/day)
    Thanks Received:
    909
    Location:
    Sector ZZ₉ Plural Z Alpha
    Best security? Unplug the damned hardline! :p
     
  19. DRDNA

    DRDNA

    Joined:
    Feb 19, 2006
    Messages:
    4,797 (1.51/day)
    Thanks Received:
    570
    Location:
    New York
    Last edited: Apr 8, 2010
  20. DanTheBanjoman Señor Moderator

    Joined:
    May 20, 2004
    Messages:
    10,553 (2.77/day)
    Thanks Received:
    1,383
    That would be silly, you open a bunch of ports if required. All should be closed by default.
     
  21. Black Panther

    Black Panther Senior Moderator™ Staff Member

    Joined:
    May 30, 2007
    Messages:
    8,582 (3.17/day)
    Thanks Received:
    1,933
    Ditto for all the above with the exception that I use Defraggler instead of Smart Defrag.
    Then occasionally I run UltimateDefrag. Occasionally because it takes a bit long.
     
  22. Solaris17

    Solaris17 Creator Solaris Utility DVD

    Joined:
    Aug 16, 2005
    Messages:
    17,265 (5.14/day)
    Thanks Received:
    3,600
    Location:
    Florida
    Just to be clear im talking about web hosting security. Like what do you do to keep your site safe?
     
  23. mdsx1950

    mdsx1950 New Member

    Joined:
    Nov 21, 2009
    Messages:
    2,107 (1.17/day)
    Thanks Received:
    413
    Location:
    In a gaming world :D
  24. FordGT90Concept

    FordGT90Concept "I go fast!1!11!1!"

    Joined:
    Oct 13, 2008
    Messages:
    13,798 (6.26/day)
    Thanks Received:
    3,682
    Location:
    IA, USA
    Never browse the Internet unprotected:
    [​IMG]

    Works every time. ;)
     
    Crunching for Team TPU
  25. Boyfriend New Member

    Joined:
    Nov 30, 2008
    Messages:
    160 (0.07/day)
    Thanks Received:
    34
    Lol
     

Currently Active Users Viewing This Thread: 1 (0 members and 1 guest)

Share This Page