Presentation is loading. Please wait.

Presentation is loading. Please wait.

Securing LAMP: Linux, Apache, MySQL and PHP Track 2 Workshop PacNOG 7 July 1, 2010 Pago Pago, American Samoa.

Published byNelson Barker Modified over 8 years ago

Similar presentations

Presentation on theme: "Securing LAMP: Linux, Apache, MySQL and PHP Track 2 Workshop PacNOG 7 July 1, 2010 Pago Pago, American Samoa."— Presentation transcript:

1 Securing LAMP: Linux, Apache, MySQL and PHP Track 2 Workshop PacNOG 7 July 1, 2010 Pago Pago, American Samoa

2 What do we mean? Many potential actions to secure a LAMP server. But, we will now concentrate on LAMP-specific items, including: Configuration changes to: -Apache web server -PHP -MySQL

3 Apache Security Items There are a number of items we can consider, including: Apache access controls Apache mod_security module Using virtual hosts (already done) Run Apache in a chroot environment Using the SecFilter module Using ssl for https connections.

4 PHP Security Items There are few configuration directives to consider. Most PHP security is in the actual code that is written. Configuration includes: Setting expose_php = off Turn off global variables -register_globals = off Be sure php logging is on.

5 MySQL Security Items There are few configuration directives to consider. And, we must remember to filter user input in PHP code that accesses MySQL: Set a root password for MySQL Consider using another name for admin account than root. Remove test databases if installed. Make sure MySQL is only listening for local connections.

6 Securing LAMP Conclusion Most or many of the items mentioned here are already done by default in the Ubuntu Linux distribution. We will now update our configuration files to add additional security for our local LAMP installation. Then we will create a “secure” LAMP application.

Download ppt "Securing LAMP: Linux, Apache, MySQL and PHP Track 2 Workshop PacNOG 7 July 1, 2010 Pago Pago, American Samoa."

Similar presentations

PHP SQL. Connection code:- mysql_connect(server, username, password); Connect to the Database Server with the authorised user and password. Eg $connect.

PHP SQL. Connection code:- mysql_connect("server", "username", "password"); Connect to the Database Server with the authorised user and password. Eg $connect.
Pete Deremer Michael McGregor Eddie Jesinsky Jonathan Day.

Pete Deremer Michael McGregor Eddie Jesinsky Jonathan Day.
December, 2008 CS-591 Securing Servers: International Capture the Flag 1 Nadine Sundquist CS591-F2008 University of Colorado, Colorado Springs Dr. C. Edward.

December, 2008 CS-591 Securing Servers: International Capture the Flag 1 Nadine Sundquist CS591-F2008 University of Colorado, Colorado Springs Dr. C. Edward.
Dan Fleck.  WAMP – Windows Apache MySQL PHP -  LAMP – Linux Apache MySQL PHP ◦ There are.

Dan Fleck.  WAMP – Windows Apache MySQL PHP -  LAMP – Linux Apache MySQL PHP ◦ There are.
OpenNebula VM ICOM5016 DATABASE SYSTEMS PROFESSOR: DR. AMIR CHINAEI PREPARED BY: PAUL BARTUS.

OpenNebula VM ICOM5016 DATABASE SYSTEMS PROFESSOR: DR. AMIR CHINAEI PREPARED BY: PAUL BARTUS.
雲端計算 Cloud Computing Lab - EyeOS. Agenda Installation Programming.

雲端計算 Cloud Computing Lab - EyeOS. Agenda Installation Programming.
Created by Brendan Ryan1 Apache Server A MySql Database A fully PhP Execution Easy PhP.

Created by Brendan Ryan1 Apache Server A MySql Database A fully PhP Execution Easy PhP.
A complete web app using flex. You can use the flex builder to generate the php (server side) code for a flex-php application. As before, Php connects.

A complete web app using flex. You can use the flex builder to generate the php (server side) code for a flex-php application. As before, Php connects.
How Clients and Servers Work Together. Objectives Learn about the interaction of clients and servers Explore the features and functions of Web servers.

How Clients and Servers Work Together. Objectives Learn about the interaction of clients and servers Explore the features and functions of Web servers.
SquirrelMail for Webmail AfNOG 2012 Scalable Internet Services (SS-E) Presented by Michuki Mwangi Serrekunda, Gambia (Original Materials by Joelja)

SquirrelMail for Webmail AfNOG 2012 Scalable Internet Services (SS-E) Presented by Michuki Mwangi Serrekunda, Gambia (Original Materials by Joelja)
Introducing LAMP: Linux, Apache, MySQL and PHP Track 2 Workshop PacNOG 7 July 1, 2010 Pago Pago, American Samoa.

Introducing LAMP: Linux, Apache, MySQL and PHP Track 2 Workshop PacNOG 7 July 1, 2010 Pago Pago, American Samoa.
SquirrelMail for Webmail AfNOG 2013 Scalable Internet Services (SS-E) Presented by Michuki Mwangi Lusaka, Zambia (Original Materials by Joelja)

SquirrelMail for Webmail AfNOG 2013 Scalable Internet Services (SS-E) Presented by Michuki Mwangi Lusaka, Zambia (Original Materials by Joelja)
SYST 28043 Web Technologies SYST 28043 Web Technologies Installing a Web Server (XAMPP)

SYST Web Technologies SYST Web Technologies Installing a Web Server (XAMPP)
System Administration: Linux Track 2 Workshop June 2010 Pago Pago, American Samoa.

System Administration: Linux Track 2 Workshop June 2010 Pago Pago, American Samoa.
Hosting Control Panels Allows users to manage their various hosted services in single place.  Creating webspaces  Creating FTP accounts  Creating email.

Hosting Control Panels Allows users to manage their various hosted services in single place.  Creating webspaces  Creating FTP accounts  Creating .
By Jeerarat Boonyanit. As you can see I have chosen Cpanel for my server management tool. cPanel is a Linux based web hosting control panel that provides.

By Jeerarat Boonyanit. As you can see I have chosen Cpanel for my server management tool. cPanel is a Linux based web hosting control panel that provides.
TOPIC 1 – SERVER SIDE APPLICATIONS IFS 234 – SERVER SIDE APPLICATION DEVELOPMENT.

TOPIC 1 – SERVER SIDE APPLICATIONS IFS 234 – SERVER SIDE APPLICATION DEVELOPMENT.
Additional SugarCRM details for complete, functional, and portable deployment.

Additional SugarCRM details for complete, functional, and portable deployment.
Installing CiviCRM onto Wordpress. How does it work?

Installing CiviCRM onto Wordpress. How does it work?
Eucalyptus Virtual Machines Running Maven, Tomcat, and Mysql.

Eucalyptus Virtual Machines Running Maven, Tomcat, and Mysql.

Similar presentations

Ads by Google