can anyone recommend a good guide on how to install apache httpd server on a windows machine so it would run securely? i was told creating a separate limited account was one of the steps but dont recall the others. please advise?
163,
Security on a WinDoze box? You are kidding, aren’t you?
Okay, my test server is on a Win7 box which is NOT available off the localhost. That’s step 1. I’d installed my first test server using the directions in Kevin Yank’s book but Win7 has made a minor shambles out of that. The only things I can add are:
TURN OFF IIS (and prevent it from starting - use services.msc for this) so you can allow Apache to own port 80. Use localhost as your domain and 127.0.0.1 for your IP address. Do NOT under any circumstances allow the installer to use ProgramFiles as the base directory! Once you’re past those nasty little sticking points, you SHOULD be okay with Kevin’s “checklist.”
Regards,
DK
What’s the name of the book?
The realistic difference between Windows and Linux in terms of security is that Windows has a lot more features and components that are installed and run by default, not anything particularly making it by magic insecure. The bigger and more bloated Linux gets with its components, such as Ubuntu, the less secure it will become itself.
Regards,
DK