Securing LAMP: Linux, Apache, MySQL and PHP Track 2 Workshop PacNOG 7 July 1, 2010 Pago Pago, American Samoa.

Slides:

Advertisements

Similar presentations

PHP SQL. Connection code:- mysql_connect("server", "username", "password"); Connect to the Database Server with the authorised user and password. Eg $connect.

Advertisements

Pete Deremer Michael McGregor Eddie Jesinsky Jonathan Day.

December, 2008 CS-591 Securing Servers: International Capture the Flag 1 Nadine Sundquist CS591-F2008 University of Colorado, Colorado Springs Dr. C. Edward.

Dan Fleck.  WAMP – Windows Apache MySQL PHP -  LAMP – Linux Apache MySQL PHP ◦ There are.

OpenNebula VM ICOM5016 DATABASE SYSTEMS PROFESSOR: DR. AMIR CHINAEI PREPARED BY: PAUL BARTUS.

雲端計算 Cloud Computing Lab - EyeOS. Agenda Installation Programming.

Created by Brendan Ryan1 Apache Server A MySql Database A fully PhP Execution Easy PhP.

A complete web app using flex. You can use the flex builder to generate the php (server side) code for a flex-php application. As before, Php connects.

How Clients and Servers Work Together. Objectives Learn about the interaction of clients and servers Explore the features and functions of Web servers.

SquirrelMail for Webmail AfNOG 2012 Scalable Internet Services (SS-E) Presented by Michuki Mwangi Serrekunda, Gambia (Original Materials by Joelja)

Introducing LAMP: Linux, Apache, MySQL and PHP Track 2 Workshop PacNOG 7 July 1, 2010 Pago Pago, American Samoa.

SquirrelMail for Webmail AfNOG 2013 Scalable Internet Services (SS-E) Presented by Michuki Mwangi Lusaka, Zambia (Original Materials by Joelja)

SYST Web Technologies SYST Web Technologies Installing a Web Server (XAMPP)

System Administration: Linux Track 2 Workshop June 2010 Pago Pago, American Samoa.

Hosting Control Panels Allows users to manage their various hosted services in single place.  Creating webspaces  Creating FTP accounts  Creating .

By Jeerarat Boonyanit. As you can see I have chosen Cpanel for my server management tool. cPanel is a Linux based web hosting control panel that provides.

TOPIC 1 – SERVER SIDE APPLICATIONS IFS 234 – SERVER SIDE APPLICATION DEVELOPMENT.

Additional SugarCRM details for complete, functional, and portable deployment.

Installing CiviCRM onto Wordpress. How does it work?

Eucalyptus Virtual Machines Running Maven, Tomcat, and Mysql.

Best Practices in Moodle Administration Best Practices in Moodle Administration A variety of topics from technical to practical Jonathan Moore Vice President.

Securing Apache and PHP

True or False? Programming languages can be used to update databases and communicate with other systems. True.

© 2003 By Default! A Free sample background from Slide 1 Week 2  Free PHP Hosting Setup  PHP Backend  Backend Security 

Review Security Hardening IPTables SELinux. Today Installations and updates – Rpm command and packages Apache “Issue Ownership”

Prestashop is an open source e-commerce application. It is written in PHP and is based on Smarty template engine. It can incorporate the advantages of.

SYST Web Technologies SYST Web Technologies Databases & MySQL.

Hello We are looking for a coder to code the following We have a network that has different sites: we need an application that will scan the network and.

IsisOnline Manual Publishing your CDS/ISIS databases is very easy! Ismail Fahmi KMRG ITB.

Ozan Şahin Ömer Üçler.  Purpose of Project  Used Technologies  Database Design  Problems&Solutions  Use Case’s  Demo.

Cosc 4750 Configuring httpd, Mysql, And Samba. defaults By default httpd demean will startup and work User directories are turned off Default directory.

Bloomer User Notes Installing and Running a Bloomer Installation Jack Park Latest: Project Home:

Yang Kaiyuan Chen Yiping Wang Cong Apache http Server.

Unzip the attachment and double click to run it..

Install Appaserver ©Tim Riley. Apache Group ©Tim Riley Add yourself to the apache group. Both the apache user and group are called “www-data”. This step.

Zeus Web Server and HP Secure Linux Andy Pearce

Group Name: PNT Group Members: Prabin Joshi and Ngoc Vu.

DataFlow Diagram – Level 0

Linux Services Configuration

Creating a simple database This shows you how to set up a database using PHPMyAdmin (installed with WAMP)

PHP Error Handling & Reporting. Error Handling Never allow a default error message or error number returned by the mysql_error() and mysql_errno() functions.

WAMP Server Installatin Shiyun Wen. WAMP Server Installation  WAMP Server is an integrated installation of Apache, MySQL, and PHP for Windows. Following.

Steps to Install VirtueMart 1. Setup Database 2. Download VirtueMart 3. Setup VirtueMart 4. Test installation Prerequisites: 1. XAMPP installation complete.

Web Server Apache PHP HTTP Request User types URL into browser Address resolved if nec. We use directly Most browsers request.

(ITI310) By Eng. BASSEM ALSAID SESSIONS 10: Internet Information Services (IIS)

Session 11: Cookies, Sessions ans Security iNET Academy Open Source Web Development.

© 2003 By Default! A Free sample background from Slide 1 Week 3  Backend Construction  Create your own CRM Please Visit:

Installing the ALSMS Software on a Windows Platform Configuration Example Alcatel-Lucent Security Products Configuration Example Series.

Aaron Corso COSC Spring What is LAMP?  A ‘solution stack’, or package of an OS and software consisting of:  Linux  Apache  MySQL  PHP.

Your current Moodle 1.9 Minimum Requirements Ability to do a TEST RUN! Upgrading Moodle to Version 2 By Ramzan Jabbar Doncaster College for the Deaf By.

Slide Set #24: Database security SY306 Web and Databases for Cyber Operations.

Installing a Moodle Test Site The painless and easy way.

DATABASE ACCESS CONTROL IST Question Almost every PHP page needs to interact with database, does that mean sqlUsername and sqlPassword need to be.

Configuration File – ProdigyView. Overview Objective Learn how to configure the system through the xml file. Requirements Understanding of the Defines.

1 E-Site - FTP Services Setup / install guide. 2 About FTP services can run on any desired port(s) Runs as a windows service Works for all sites installed.

How to use Drupal Awdhesh Kumar (Team Leader) Presentation Topic.

L.A.M.P. İlker Korkmaz & Kaya Oğuz CS 350. Why cover a lecture on LAMP? ● Job Opportunities – There are many hosting companies offering LAMP as a web.

APACHE INSTALL AWS Linux (Amazon Web Services EC2)

Installing iHRIS Install iHRIS Manage on an Ubuntu System

Introduction to Dynamic Web Programming

COP 4343 Unix System Administration

Chapter 5 Linux Services

System security plan & Status report

Vulnerability Scanning With 'lynis'

Lab 1 introduction, debrief

Module 3 Building a web app.

REDCap and Data Governance

MySQL Backup, Transfer and Restore

Installing Moodle Fantastico!.

Convergence IT Services Pvt. Ltd

Presentation transcript:

Securing LAMP: Linux, Apache, MySQL and PHP Track 2 Workshop PacNOG 7 July 1, 2010 Pago Pago, American Samoa

What do we mean? Many potential actions to secure a LAMP server. But, we will now concentrate on LAMP-specific items, including: Configuration changes to: -Apache web server -PHP -MySQL

Apache Security Items There are a number of items we can consider, including: Apache access controls Apache mod_security module Using virtual hosts (already done) Run Apache in a chroot environment Using the SecFilter module Using ssl for https connections.

PHP Security Items There are few configuration directives to consider. Most PHP security is in the actual code that is written. Configuration includes: Setting expose_php = off Turn off global variables -register_globals = off Be sure php logging is on.

MySQL Security Items There are few configuration directives to consider. And, we must remember to filter user input in PHP code that accesses MySQL: Set a root password for MySQL Consider using another name for admin account than root. Remove test databases if installed. Make sure MySQL is only listening for local connections.

Securing LAMP Conclusion Most or many of the items mentioned here are already done by default in the Ubuntu Linux distribution. We will now update our configuration files to add additional security for our local LAMP installation. Then we will create a “secure” LAMP application.