PCCstudent

Hello, do you guys always leave a keyboard,mouse,and monitor dedicated to your home web server or do you move one arround when you need to perform maintiance or work on web pages?

Perhaps a remote session from another PC is the way this is handeled.

Should I be able to leave my XP firewall up and still let people access my site? My tech support company (Cyberdefender) expressed the view of "how to you expect people to access your site if your firewall is up" I was thinking some kind of exceptions but they flately discounted the idea.

I am daily picking up 2 medium level trojan agents, Riskware.server-ftp.serv-u and Trojan Backdoor , Serv-u

Serv-u is my FTP host. I am using XP Pro as a OS and Apache for HTTP.

Can't say the security issue is not pressing, only that it is the most important issue I am facing, I want to get it handeledd right.

Most have probably never heard of CyberDefender for AV and tech support but the AV has been quarantiening the trojans and then I remove them.

they have been getting into files and the registry.

Any possibility with a link to Serv-U? I would not think my FTP host would be exposing me to trojan agents but I will talk to them tomorrow.

Where would be the best place to install Dreamweaver? On the server its self or a completly different PC and download (or transfer by flash or DVD my HTML pages)?Or there is a better way I have not even thought of?

Manyak

To answer some of your questions, yes you can, and absolutely SHOULD leave the firewall up. Set it to only allow connections on the ports you need for the website. Unless you changed some settings around HTTP is port 80, HTTPS is 443, FTP is ports 20 and 21, SFTP is port 22. And you might not even need all of them, depending on your site.

It sounds like Cyberdefender is telling you to keep your server unsecure so it can be hacked and they can sell you more anti-everything software.

Just to let you know, there are trojans that simply set up an FTP server without your knowledge and allow the attacker to access your data, and that may be what's causing the false positive with the software. However, maybe the software itself is a trojan, I don't know. Why don't you just use Apache for FTP as well anyway?

The best security (for the money) you can give your server is to get a real UTM box that handles the anti-virus, firewall, and all that other fancy stuff. If you've got an old box lying around check out Untangle and Endian, they're pretty good (and cheap) software that does the same stuff expensive enterprise boxes do.

As far as the keyboard/mouse thing goes, it all depends. But in your situation - a single server at home that's best off shoved in a closet out of sight - then I just use remote desktop. Of course, make sure you allow remote desktop through the software firewall too (TCP port 3389, and UDP 3389 if you want sound but that's not necessary for a server).

__________________
For Sale: [Conus] CM Storm Scout, TEC, WC, Laptop, A900, Model M, GPU, Audio, and a ton more!!

PCCstudent

OK I must configure to have firewall for eveything but port 80 and the port my FTP is using. I must look for set-up instructions to use Apache for FTP. I seems I can do whatever suits me as to having a dedicated monitor for the server.

Next I must investigate just what a UTM box is and check out the set up complexibility of the two softwares you mention,you suggest just "google' UTM box? likewise for Untangle and Endian. Poor or non-existant documentation is what pushes me to "buywere" as opposed to freeware. Need more Apache documentation also,anything like 'apache for idiots" out there. I know they have a site but again it is oriented to the more knowledgeable user.

Manyak

UTM stands for Unified Threat Management. It's basically a firewall, antivirus, application gateway (proxy), and intrusion prevention system (IPS) all in one. You can get hardware 'routers' that do it, or use software (like Untangle and Endian) to convert a regular x86 PC into one. It makes things a lot easier .

Unfortunately I don't know of any Apache guides other than their site and whatever books you can find at Borders. Sorry :/

__________________
For Sale: [Conus] CM Storm Scout, TEC, WC, Laptop, A900, Model M, GPU, Audio, and a ton more!!

PCCstudent

But at least you do know that someone has made guides for Apache and I have seen the type of firewalls you describe. you are right the were slightly pricey (a little over 150.00 for a Trendent if I remember correctly.

Yes I have to get these thigs up and configured. thanks

Thing about using a PC is my lowest end PC is a Pentium 4 and I use it daily (web browsing and let it play my streaming music)

If I dropped Apache and went to Server 2008 for web hosting I bet (but not sure) I would have FTP hosting with IIS 7,do you know for sure?

I have a low end trendent router (8 port 30.00) laying around,I will check if it has these features. I was told my Actionet M1000 modem I am using was a modemcomrouter,I wonder if this modem offers UTM protection.

Since port 80 must be left open to make things work how do people with web servers secure port 80?

Since I am not web browsing on my server I must conclude my trojan agents are getting in on either port 80 or the FTP ports,Untangle and Endian are software oriented ways to protect port 80 and FTP ports and the UTM boxes are hardware techniques? Or is protecting port 80 only a after the fact situation (like my current AV is handling them?)

Manyak

Don't even bother checking those, consumer routers don't have squat. The ones I'm talking about are something like this or this. Which is why I suggest the software solution, because these things are expensive as hell . And a pentium 4 is actually perfectly fine for being turned into a UTM box (if you weren't using it that is) as long as you have standard home cable speeds (less than 50Mbps).

Yes IIS does host FTP. But you don't have to drop apache, you can just have IIS do only FTP while apache does HTTP. Apache is much less vulnerable to threats than IIS.

__________________
For Sale: [Conus] CM Storm Scout, TEC, WC, Laptop, A900, Model M, GPU, Audio, and a ton more!!

PCCstudent

Looking in various places for making a UTM from my Pentium box. Found one article that mentioned running linux and a application,but that it as far as doing this. Perhaps my "google" search needs refinement,have you any links?

Spoke with Serv-U and they present the case of my AV misidentifying some aspects of serv-U as a trojan when there really isn't any.

I am looking for ways to secure my port 80 and FTP port(s). Of all the areas of home web site hosting I am finding the least on these items,can any direction be given?

Manyak

http://wiki.untangle.com/index.php/FAQs

http://www.endian.com/en/community/feature-comparison/

__________________
For Sale: [Conus] CM Storm Scout, TEC, WC, Laptop, A900, Model M, GPU, Audio, and a ton more!!

PCCstudent

Looked both sites over,not much mention of price but theses services are not going to be free, I have no problem paying to get exactly what I want and tech support. What usually happens with me is I pay for a period of time until I have the situation figured out then I cast off the services that require payment,I look at it as tuition,I don't expect someone to lay it all out for me for free.

My next step is to contact endian and see how well they can explain their product and see if it is a match for my task of protecting my home web site.

Piece by piece things are comming together,it doesn't pay to get in a rush. Many thanks for the link. Usually all I need is direction and not a "full hold my hand" experience and you have provided that direction.

I will contact untangle also but I need only additional firewall and additional AV protection,none of the employee limitations are needed. I must find out how good documentation is. It does concern me that price is not displayed front and center.

Manyak

That's because it's free . The only things you pay for are what are listed under the paid apps if you decide to use them, and those prices are listed here and here.

As for Endian, the pricing can be found here (last updated 2007). But the community version is still 100% free.

__________________
For Sale: [Conus] CM Storm Scout, TEC, WC, Laptop, A900, Model M, GPU, Audio, and a ton more!!