Tilted Forum Project Discussion Community

Tilted Forum Project Discussion Community (https://thetfp.com/tfp/)
-   Tilted Technology (https://thetfp.com/tfp/tilted-technology/)
-   -   my webserver (https://thetfp.com/tfp/tilted-technology/60157-my-webserver.html)

bacon_masta 06-23-2004 09:15 AM

my webserver
 
so after weeks of agonizing research and trial and error, i finally found out that the reason my webserver wouldn't run was because of my dsl modem. everything is back on track now, and if anyone would care to check out the site and give me some feedback (not really any content yet, but the graphics are cool) i would appreciate it. eventually, the site will be localslackers.com, but for now it's just an ip

http://65.7.245.230

i would like to thank everyone on tfp who answered my networking questions, inane as some of them were, and hope you like the site.

Xirax 06-23-2004 10:32 AM

Running Apache. Nice stuff. Looks pretty good so far.

What are you planning to use in the way of nameservers? Your own? A third party service perhaps?

pixelbend 06-23-2004 12:18 PM

Links do not work in Firefox on my PowerBook.

hrdwareguy 06-23-2004 01:18 PM

Links don't work for me either in firefox. I think it may be because you aren't calling a page, just passing an additional value.

Also have you thought of what you will do when your DSL company decides to have your modem lease a new address? Once that happens the name won't resolve to anyplace.

henlin 06-23-2004 04:00 PM

you could always use a dynamic dns service like http://www.dyndns.org

sailor 06-23-2004 04:17 PM

Quote:

Originally posted by henlin
you could always use a dynamic dns service like http://www.dyndns.org
Thats what I do... Works pretty well, so long as you dont mine having to redirect to one of their domains (my site is theravenel.mine.nu... my domain, theravenel.net, redirects there).

asshopo 06-24-2004 07:36 AM

For $25/yr, you can have dyndns.org host your dns for any of your domains. Then you don't have to use one of the provided domains of theirs. Then you just use a dyndns client like you do for any of the free provided domains, and you're set.

bacon_masta 06-24-2004 12:10 PM

yeah, sorry if anyone tried to hit the server lately, some bastard's been launching DoS attacks at me all day long...btw, the links don't go anywhere...YET. and in terms of renewing my ip lease, i'm going to have to move in a year anyway, so i think i'll be ok. no idea what dns server i'm using, my php man registered the domain name to the ip. btw, LOCAL SLACKERS is up and running, so you don't have to use the ip link anymore

cowudders14 06-24-2004 12:33 PM

Graphics are good, although I think a small bit of text saying what the site is about may not go amiss - I looked at the front page and thought "huh?", then noticed the links along the top.

You said it's up and running, but the links still do not work. I assume that's still intentional?

hrdwareguy 06-24-2004 02:45 PM

Quote:

Originally posted by bacon_masta
no idea what dns server i'm using, my php man registered the domain name to the ip. btw, LOCAL SLACKERS is up and running, so you don't have to use the ip link anymore
Just be aware that if you reboot your modem, power goes out, or whatever, it is possible for your IP to change. Then when people type in the URL, it won't work.

bacon_masta 06-24-2004 03:09 PM

i'm paying for a static ip from bellsouth, and i've got the modem set up as a gateway with no say in what's done with information, it just forwards everything to the router. in the next 2 hours or so more of the site will be operational, we're just trying to work out some php bugs. i'll throw out another post when everything is **somewhat** set up.

btw, this site is really just us wanting to have a quote board and a place to host projects without paying for hosting, in addition to individual areas that will be added by myself, my room mate, and the guy who's coding for us, it's not business/school related

bacon_masta 06-26-2004 08:42 AM

so uh, i REALLY need some advice. the webserver was up and running, and withstanding between 30 and 40 attacks per hour (thanks to sygate personal pro). my php coder and i decided to set up a two way ftp server so he could update the page from his house. i thought it was a bad idea from the get go, on a new server for the first server i've ever run, and it turned out i was right. someone compromised the ftp, the logs were cleared, the entire website was deleted, and the apache server won't run anymore. we've already upgraded to apache 2.0.49 from 1.3.29, and i was just wondering what is a good ftp server, and if there is a better firewall/webserver that could be used. the best security measure would be to switch to linux and run iptables, but my friend has no linux experience. we were running wftp, btw, and are thinking about switching to bullet ftp. please, any advice would be REALLY appreciated

sailor 06-26-2004 05:33 PM

Standard practice after a server has been cracked is to wipe the box. Grab any logifles you can, try to figure out what he did, and then blow it away and reinstall the OS. You dont know what he did to the machine, and there isnt any real way to find out.

Consider using something more secure than FTP in the future. SSH/SCP or SFTP are good places to start.

ratbastid 06-26-2004 05:40 PM

Sailor's right: burn the drive and reinstall. There's no such thing as "cleaning up" a hacked box.

FTP servers aren't very secure, but they're a necessary evil sometimes. At least make sure that whatever you install is up to date. If you install a year-old version, you'll get portscanned and banner-IDed and whatever vulnerabilities in that old version will be exploited in no time. As you found--you can be hacked within minutes of putting the service live.

When I HAVE to use FTP I install ProFTPd. I've never had it hacked. That and $3.75 gets you a Venti Latte.

There are lots of GUI tools for setting up an iptables firewalling script. Go to freshmeat and search for iptables firewall. Close every port except ftp and http. Also, make sure you don't accidentally have any other services running. Run nmap against the server and see what you get--you can be sure that the script kiddies will!

bacon_masta 06-27-2004 11:37 AM

so a system restore won't do the trick? DAMN YOU MICROSOFT!! thanks for the advice, i'm going to stick with xp for now, guess i'll go ahead and reformat :( definitely plan on switching the server to linux as soon as i can convince my coder to get away from microshaft. i looked into freshmeat, and i found some great stuff. thanks for a new resource, ratbastid, and thank you sailor for the suggestions on a more secure way to update the server remotely. hopefully the server will be up and running (with CONTENT, no less) by tomorrow. i'll shout out when i get everything set up.

EDIT we're using bigdaddy's dns service

bacon_masta 06-28-2004 06:31 PM

redhat 9, fully updated, kernel ver 2.4.20
256 megs ram
1 ghz proc
cd, floppy
bellsouth dsl

i reformatted the server, and i'm now running redhat 9, fully updated, (kernel too, 2.4.20, as high as the distro supports). for the webserver, i'm running apache 2.0.49, and i'm not having any problems accessing the site.

my friend and i tried to configure vsftpd to allow remote updates to the web site (as i tried, as mentioned in the above post, with wftpd), but when i try to access the server (using filezilla 2.2.5) i get the following error message

Status: Connecting to 192.168.1.101 ...
Status: Connected with 192.168.1.101. Waiting for welcome message...
Error: Disconnected from server
Error: Unable to connect!

i configured iptables using the default redhat gui (might be the default kde gui) to allow connections to a webserver and an ftp server to no avail. i know it's not a problem with my router, as i'm only trying to access the ftp server from inside my domain.

i have 2 questions regarding my problem

when i formatted the machine, i selected to allow http access on port 80, but i DIDN'T set up to allow ftp access until after the install.
could this have anything to do with my problem?

the other is, if this is the problem, would configuring iptables through the console to allow connections on port 21 change anything?

once again, any advice is appreciated

bacon_masta 06-30-2004 01:12 PM

so once again, my webserver is up and running. redhat 9, apache 2.0.49, check it out: LOCAL SLACKERS

bacon_masta 06-30-2004 08:14 PM

my friend/coder killed the pc trying to add ram, so i'm gutting it for parts. no more webserver until i find another desktop, so don't try to hit the site. GOODBYE CRUEL WORLD


All times are GMT -8. The time now is 10:27 AM.

Powered by vBulletin® Version 3.8.7
Copyright ©2000 - 2025, vBulletin Solutions, Inc.
Search Engine Optimization by vBSEO 3.6.0 PL2
© 2002-2012 Tilted Forum Project


1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131 132 133 134 135 136 137 138 139 140 141 142 143 144 145 146 147 148 149 150 151 152 153 154 155 156 157 158 159 160 161 162 163 164 165 166 167 168 169 170 171 172 173 174 175 176 177 178 179 180 181 182 183 184 185 186 187 188 189 190 191 192 193 194 195 196 197 198 199 200 201 202 203 204 205 206 207 208 209 210 211 212 213 214 215 216 217 218 219 220 221 222 223 224 225 226 227 228 229 230 231 232 233 234 235 236 237 238 239 240 241 242 243 244 245 246 247 248 249 250 251 252 253 254 255 256 257 258 259 260 261 262 263 264 265 266 267 268 269 270 271 272 273 274 275 276 277 278 279 280 281 282 283 284 285 286 287 288 289 290 291 292 293 294 295 296 297 298 299 300 301 302 303 304 305 306 307 308 309 310 311 312 313 314 315 316 317 318 319 320 321 322 323 324 325 326 327 328 329 330 331 332 333 334 335 336 337 338 339 340 341 342 343 344 345 346 347 348 349 350 351 352 353 354 355 356 357 358 359 360