Is Your Web Server Secure?

December 28, 2006 By Leave a Comment

Is your web server secure or are you unknowingly allowing access to all of your personal files?

Most universities in the United Stated provide server space for students and faculty to use for websites, homework, and various other reasons. While a great practice, it also creates very serious security risk when inexperienced computer users and improperly secured web directories meet. Many students use their personal web space to store resumes, pictures of family, class projects and many other personal items that contain very sensitive information. When the student places these files in an unsecured directory, the files are offered up to anyone who happens to browse the folder. Here is an example of what an unsecured Apache Server directory looks like to someone on the internet who is browsing your personal files after a very simple Google search.

Consider the possible ramifications of a student storing pictures of themselves, their resume including home address, phone number and email address. Those ramifications could very serious in today’s society with online predators.

There are a few different ways to combat the problem of open or unsecured directories but the easiest way is a slight modification to the http.conf file for Apache servers. By default Apache servers display the contents of a directory if the server does not find an index.html or similarly associated file. To make the needed correction webmasters should find a line in the http.conf file that looks very similar to this:

Options Indexes FollowSymLinks Includes

Remove the term Indexes. Save the http.conf file and restart your Apache server.

Now when an internet visitor navigates to a directory that doesn’t have an associated DirectoryIndex file the surfer will get a permission denied error instead of a listing of all the files on the server.

Filed Under: Uncategorized Tagged With: ,

Google Christmas Card

December 22, 2006 By Leave a Comment

Did everyone get their Google Christmas Card?

Merry Christmas

Filed Under: Uncategorized Tagged With: , ,

I’ve Been Blog Tagged

December 20, 2006 By 1 Comment

Thanks to Ryan McCoy over at Blog Ryan for the Blog Tag. Blog tag is a game going around where you post 5 things about yourself that most people don’t know. So without further adieu here is my list.

  1. I am a huge Jimmy Buffett fan and have a tattoo on my left ankle of the chameleon logo from his Caribbean Soul t-shirts.
  2. I love horror movies. Especially the ones from the 70′s. I have a Michael Myers McFarland figure on my desk and have seen Halloween hundreds of times. I will even pop it in the computer and play it in the background just to listen to it.
  3. I have been in the tech field for 8 years and using computers for 20+ years. I still don’t own an MP3 player. ( I cheat and use my old Pocket PC phone to listen to Audio books from audible.com
  4. I have a 2001 Black Mustang Bullitt, number 4301 out of 5500ish made. Thanks to Atlanta traffic, I hate driving it.
  5. I spent a month ranked number 1 in the world playing thesportingnews.com paid fantasy hockey.

Now let me see. Who can I tag. I think I will get: Chris Hooley, Steve Pavlina ,Greg Gaylord, and Cristian Mezei

Filed Under: Uncategorized Tagged With:
« Older Posts