Full Version: How safe is it to setup a webserver on WinXP these days?
Title sums it up. I want to open :80 or :8080 to the world from my PC... anyone have the latest skinny on how safe or not it may be? Don't really want my computer to be randomly hijacked by a teen.
If you just turn on IIS and run it you are vulnerable to known exploits. Apply the updates, configure and secure it and you should be OK, until the next exploit comes out.
Here's an article that looks interesting: Checklist for Securing a Windows XP IIS 5.1 Webserver .
Please note that I did not read this in full and provide the link for informational purposes only.
Here are some links to Microsoft:
Secure Internet Information Services 5 Checklist
Internet Information Services in Windows XP SP1
Internet Information Services (IIS) Security Center
Here's some general IIS info you should be aware of (obtained from XP Pro Help & Support center):
Lastly, be aware that running a server may go against your ISP's TOS (Terms of Service).
Here's an article that looks interesting: Checklist for Securing a Windows XP IIS 5.1 Webserver .
Please note that I did not read this in full and provide the link for informational purposes only.
Here are some links to Microsoft:
Secure Internet Information Services 5 Checklist
Internet Information Services in Windows XP SP1
Internet Information Services (IIS) Security Center
Here's some general IIS info you should be aware of (obtained from XP Pro Help & Support center):
QUOTE
Note IIS for Windows XP Professional is designed for users developing a Web service, for home, or for office use. IIS Professional can only service 10 simultaneous client connections and does not leverage all the features of the server versions. IIS replaces the former default Web service, the Personal Web Service (PWS), on home and professional versions of Windows. PWS cannot be upgraded from previous Windows products.
If you have IIS installed, you can view the product documentation by typing http://localhost/iisHelp/ in your browser address bar and pressing ENTER.
If you have IIS installed, you can view the product documentation by typing http://localhost/iisHelp/ in your browser address bar and pressing ENTER.
Lastly, be aware that running a server may go against your ISP's TOS (Terms of Service).
i'd definitely run a firewall. hardware firewall would be good too if you had it.
Isn't there a windows version of Apache out now, which would seem to be a much better alternative? Could be totally off, but i could have sworn i read something about a windows version somewhere...
Hardware firewall will help, but will probably requre port forwarding to allow the web server to work.
-Dave.
Hardware firewall will help, but will probably requre port forwarding to allow the web server to work.
-Dave.
yup, i don't think it's new though. i used to run it a little while back just to mess around with it.
yes a hardware firewall would take some configuring.
yes a hardware firewall would take some configuring.
I have no problems, but I do run mine with port forwarding through a router. Just do the following two things or you WILL (not might) be sorry:
1) Download ALL security updates (which you should be doing anyway)
2) Install a security program (I use Norton Internet Security)
Optional, but highly recommended would be to image the entire drive monthly, and retain one month's prior image as well.
Since I started following step 1 & 2, I have had no problems. But, if I do, thanks to step 3, I sleep well at night.
1) Download ALL security updates (which you should be doing anyway)
2) Install a security program (I use Norton Internet Security)
Optional, but highly recommended would be to image the entire drive monthly, and retain one month's prior image as well.
Since I started following step 1 & 2, I have had no problems. But, if I do, thanks to step 3, I sleep well at night.
I would definitely recommend Apache for Windows instead of ISS, merely for security reasons.
Also, make sure you use a firewall and only expose port 80.
Also, make sure you use a firewall and only expose port 80.
This is a "lo-fi" version of our main content. To view the full version with more information, formatting and images, please click here.