VServer Setup Hardening: Unterschied zwischen den Versionen

Aus Java Student User Group Austria - Java + JVM in Wien Österreich / Vienna Austria
Wechseln zu: Navigation, Suche
(PgLJgSCuU)
K (Pkofler verschob Seite Topic:VServer Setup Hardening nach VServer Setup Hardening ohne dabei eine Weiterleitung anzulegen: naming conventions)
 
(2 dazwischenliegende Versionen desselben Benutzers werden nicht angezeigt)
Zeile 1: Zeile 1:
Microsoft created a whole new lgungaae for it's .NET  platform in C# as a reaction to Java. Perhaps Sun is taking a note from this marketing decision to create hype around JavaFX as a RIA. Will it work?  Probably not. There really is no need for another lgungaae here as there was in MS land. Groovy or waterd down Java could have done the trick. JavaFX is ugly and hard to read .has nothing to do with  java other than being a wrapper around Swing. They'll pull this product before the next Java One. It was a  Trial balloon  hence the meager investment in its development.
+
I (@manuelmaly) would wish for a presentation on vServer setup + hardening, because vServers have become cheap options at almost all hosting services, yet it surely is a very bad idea to just slap on some OS, hack Rails and MySQL onto it and press upload - I'm talking of installation issues and security aspects.
 +
My usecase would be: Rails (or Java, should be similar) web server with maximum security (yeah I know, there's no "maximum" security :P). The server also hosts a database and SSH server - an all-in-one web server machine, so to say.
 +
 
 +
Since I'm already making wishes, I would wish for the following setup to be explained:
 +
 
 +
* CentOS (Linux)
 +
* Apache (for rewriting)
 +
* Ruby & Rails 3
 +
* MySQL or PostgreSQL
 +
* OpenSSH
 +
* Some Firewall (don't know which is advisable)
 +
* Most crucial configuration and hardening actions (block ports, scan packets, remove unnecessary services,...)
 +
 
 +
I guess most of the installations will require one bash line, what I'm really interested in is the configuration (e.g. Apache rewrites for maintainance etc.).
 +
I wouldn't care too much about Mailserver etc., though it would be interesting if it could be squeezed in :)
 +
 
 +
Please tweet me at @manuelmaly if I have forgotten anything.
 +
 
 +
[[Category:Voting]]

Aktuelle Version vom 20. Februar 2013, 00:05 Uhr

I (@manuelmaly) would wish for a presentation on vServer setup + hardening, because vServers have become cheap options at almost all hosting services, yet it surely is a very bad idea to just slap on some OS, hack Rails and MySQL onto it and press upload - I'm talking of installation issues and security aspects. My usecase would be: Rails (or Java, should be similar) web server with maximum security (yeah I know, there's no "maximum" security :P). The server also hosts a database and SSH server - an all-in-one web server machine, so to say.

Since I'm already making wishes, I would wish for the following setup to be explained:

  • CentOS (Linux)
  • Apache (for rewriting)
  • Ruby & Rails 3
  • MySQL or PostgreSQL
  • OpenSSH
  • Some Firewall (don't know which is advisable)
  • Most crucial configuration and hardening actions (block ports, scan packets, remove unnecessary services,...)

I guess most of the installations will require one bash line, what I'm really interested in is the configuration (e.g. Apache rewrites for maintainance etc.). I wouldn't care too much about Mailserver etc., though it would be interesting if it could be squeezed in :)

Please tweet me at @manuelmaly if I have forgotten anything.