• We’re currently investigating an issue related to the forum theme and styling that is impacting page layout and visual formatting. The problem has been identified, and we are actively working on a resolution. There is no impact to user data or functionality, this is strictly a front-end display issue. We’ll post an update once the fix has been deployed. Thanks for your patience while we get this sorted.

Setting up Apache as ONLY localhost...possible?

E

Entity

Lifer
I'm running Mandrake 8.1, and have configured Mandrake Update to check stealth.net for updates. It's working just fine, and I also know how to upgrade using RPMS, so I don't have to go through graphical updates, but it is nice.

Ok, I've deleted the old stuff I had up here, because I answered my own question. Now what I want to know/do is this: I want to setup my webserver, mysql server, etc., to work locally, but not respond remotely...as in, I want to be able to test my programs and stuff without having to worry about outside attempts to access the server. Is that possible?

Rob
 
Looking at this, what I see is this (someone, please correct me if I am wrong):

Someone was port scanning on my cable subnet, noticed that I was running Apache on port 80, and tried to access the following files, hoping that I was running a variant of NT:

/scripts/root.exe (dunno what that is)
/MSADC/root.exe (same goes here)
/cmd.exe

Etc. They apparently were looking for security holes in my NT side of my computer...

Is there anything I should be concerned about? Should I report this abuse to AT&T? I have their IP.

Rob
 
Ok, no need to correct me, because I found some more stuff. Looks like someone else has Code Red and it is passing the reqeusts (but no harm) to me, and filling up my error logs with crap.

Rob
 
Looks like someone else has Code Red and it is passing the reqeusts (but no harm) to me, and filling up my error logs with crap.

Yup, you'll have that.

For apache you want the BindAddress and Listen directives, your distro's httpd.conf should have examples but if not check out the docs at apache.org, they're quite good.

For MySQL I don't know, you could always use ipchains (or iptables if you're in 2.4 and want to learn them) to block all access on the MySQL port on the external interface.
 
Short answer, YES.

Slightly longer answer, as Nothinman said, you should be running a software firewall (i.e. ipchains or iptables rules) to block incoming connections.

For 99% of us, the only logical open port is for SSH.
 
You must log in or register to reply here.

TRENDING THREADS

Back
Top