Schadenfroh
Elite Member
Greetings,
I am going to setup an Apache server making use of a PHP web service to access a MySQL database behind the scenes.
I am also going to setup an SSH server on the same system so that friends / family can SCP files to / from it using FileZilla (on Windows). I also wish to use this to remotely control my personal server.
I know how to configure / setup all of this in Ubuntu from a basic level (to get it all working), but I am concerned about security.
Are there any guides for beginner to Apache / PHP / SSH security to get this thing more secure than simply a basic working configuration?
I am not worried about HTTPS or the web service itself, yet. Just standard security precautions to take when setting up a LAMP / SSH Server.
Sorry for the generality, but I have no specific questions at the moment and I am mainly looking for an up-to-date security guide for a LAMP, most of the ones I have found are rather old and I am not sure how skilled the person writing them is.
This will be running on Ubuntu Server 10.10, using the latest versions of Apache, PHP, OpenSSH and MySQL available from Ubuntu's repository.
Thanks
I am going to setup an Apache server making use of a PHP web service to access a MySQL database behind the scenes.
I am also going to setup an SSH server on the same system so that friends / family can SCP files to / from it using FileZilla (on Windows). I also wish to use this to remotely control my personal server.
I know how to configure / setup all of this in Ubuntu from a basic level (to get it all working), but I am concerned about security.
Are there any guides for beginner to Apache / PHP / SSH security to get this thing more secure than simply a basic working configuration?
I am not worried about HTTPS or the web service itself, yet. Just standard security precautions to take when setting up a LAMP / SSH Server.
Sorry for the generality, but I have no specific questions at the moment and I am mainly looking for an up-to-date security guide for a LAMP, most of the ones I have found are rather old and I am not sure how skilled the person writing them is.
This will be running on Ubuntu Server 10.10, using the latest versions of Apache, PHP, OpenSSH and MySQL available from Ubuntu's repository.
Thanks
