Tilted Forum Project Discussion Community  

Go Back   Tilted Forum Project Discussion Community > Interests > Tilted Technology


 
 
LinkBack Thread Tools
Old 06-23-2004, 09:15 AM   #1 (permalink)
Psycho
 
bacon_masta's Avatar
 
Location: i live in the state of denial
my webserver

so after weeks of agonizing research and trial and error, i finally found out that the reason my webserver wouldn't run was because of my dsl modem. everything is back on track now, and if anyone would care to check out the site and give me some feedback (not really any content yet, but the graphics are cool) i would appreciate it. eventually, the site will be localslackers.com, but for now it's just an ip

http://65.7.245.230

i would like to thank everyone on tfp who answered my networking questions, inane as some of them were, and hope you like the site.
bacon_masta is offline  
Old 06-23-2004, 10:32 AM   #2 (permalink)
Psycho
 
Location: Toronto
Running Apache. Nice stuff. Looks pretty good so far.

What are you planning to use in the way of nameservers? Your own? A third party service perhaps?
__________________
perl -e 'print $i=pack(c5,(41*2),sqrt(7056),(unpack(c,H)-2),oct(115),10);'
Xirax is offline  
Old 06-23-2004, 12:18 PM   #3 (permalink)
Too hot in the hot tub!
 
pixelbend's Avatar
 
Links do not work in Firefox on my PowerBook.
__________________
But I don't want ANY Spam!
pixelbend is offline  
Old 06-23-2004, 01:18 PM   #4 (permalink)
"Officer, I was in fear for my life"
 
hrdwareguy's Avatar
 
Location: Oklahoma City
Links don't work for me either in firefox. I think it may be because you aren't calling a page, just passing an additional value.

Also have you thought of what you will do when your DSL company decides to have your modem lease a new address? Once that happens the name won't resolve to anyplace.
__________________
Gun Control is hitting what you aim at

Aim for the TFP, Donate Today
hrdwareguy is offline  
Old 06-23-2004, 04:00 PM   #5 (permalink)
Tilted
 
Location: Birmingham, England
you could always use a dynamic dns service like http://www.dyndns.org
henlin is offline  
Old 06-23-2004, 04:17 PM   #6 (permalink)
beauty in the breakdown
 
Location: Chapel Hill, NC
Quote:
Originally posted by henlin
you could always use a dynamic dns service like http://www.dyndns.org
Thats what I do... Works pretty well, so long as you dont mine having to redirect to one of their domains (my site is theravenel.mine.nu... my domain, theravenel.net, redirects there).
__________________
"Good people do not need laws to tell them to act responsibly, while bad people will find a way around the laws."
--Plato
sailor is offline  
Old 06-24-2004, 07:36 AM   #7 (permalink)
Insane
 
Location: Michigan
For $25/yr, you can have dyndns.org host your dns for any of your domains. Then you don't have to use one of the provided domains of theirs. Then you just use a dyndns client like you do for any of the free provided domains, and you're set.
__________________
Patterns have a habit of repeating themselves.
asshopo is offline  
Old 06-24-2004, 12:10 PM   #8 (permalink)
Psycho
 
bacon_masta's Avatar
 
Location: i live in the state of denial
yeah, sorry if anyone tried to hit the server lately, some bastard's been launching DoS attacks at me all day long...btw, the links don't go anywhere...YET. and in terms of renewing my ip lease, i'm going to have to move in a year anyway, so i think i'll be ok. no idea what dns server i'm using, my php man registered the domain name to the ip. btw, LOCAL SLACKERS is up and running, so you don't have to use the ip link anymore

Last edited by bacon_masta; 06-24-2004 at 12:13 PM..
bacon_masta is offline  
Old 06-24-2004, 12:33 PM   #9 (permalink)
Bringer of good Moos...
 
cowudders14's Avatar
 
Location: Midlands, UK
Graphics are good, although I think a small bit of text saying what the site is about may not go amiss - I looked at the front page and thought "huh?", then noticed the links along the top.

You said it's up and running, but the links still do not work. I assume that's still intentional?
__________________
Moo! I'm mooey!
cowudders14 is offline  
Old 06-24-2004, 02:45 PM   #10 (permalink)
"Officer, I was in fear for my life"
 
hrdwareguy's Avatar
 
Location: Oklahoma City
Quote:
Originally posted by bacon_masta
no idea what dns server i'm using, my php man registered the domain name to the ip. btw, LOCAL SLACKERS is up and running, so you don't have to use the ip link anymore
Just be aware that if you reboot your modem, power goes out, or whatever, it is possible for your IP to change. Then when people type in the URL, it won't work.
__________________
Gun Control is hitting what you aim at

Aim for the TFP, Donate Today
hrdwareguy is offline  
Old 06-24-2004, 03:09 PM   #11 (permalink)
Psycho
 
bacon_masta's Avatar
 
Location: i live in the state of denial
i'm paying for a static ip from bellsouth, and i've got the modem set up as a gateway with no say in what's done with information, it just forwards everything to the router. in the next 2 hours or so more of the site will be operational, we're just trying to work out some php bugs. i'll throw out another post when everything is **somewhat** set up.

btw, this site is really just us wanting to have a quote board and a place to host projects without paying for hosting, in addition to individual areas that will be added by myself, my room mate, and the guy who's coding for us, it's not business/school related
bacon_masta is offline  
Old 06-26-2004, 08:42 AM   #12 (permalink)
Psycho
 
bacon_masta's Avatar
 
Location: i live in the state of denial
so uh, i REALLY need some advice. the webserver was up and running, and withstanding between 30 and 40 attacks per hour (thanks to sygate personal pro). my php coder and i decided to set up a two way ftp server so he could update the page from his house. i thought it was a bad idea from the get go, on a new server for the first server i've ever run, and it turned out i was right. someone compromised the ftp, the logs were cleared, the entire website was deleted, and the apache server won't run anymore. we've already upgraded to apache 2.0.49 from 1.3.29, and i was just wondering what is a good ftp server, and if there is a better firewall/webserver that could be used. the best security measure would be to switch to linux and run iptables, but my friend has no linux experience. we were running wftp, btw, and are thinking about switching to bullet ftp. please, any advice would be REALLY appreciated
bacon_masta is offline  
Old 06-26-2004, 05:33 PM   #13 (permalink)
beauty in the breakdown
 
Location: Chapel Hill, NC
Standard practice after a server has been cracked is to wipe the box. Grab any logifles you can, try to figure out what he did, and then blow it away and reinstall the OS. You dont know what he did to the machine, and there isnt any real way to find out.

Consider using something more secure than FTP in the future. SSH/SCP or SFTP are good places to start.
__________________
"Good people do not need laws to tell them to act responsibly, while bad people will find a way around the laws."
--Plato
sailor is offline  
Old 06-26-2004, 05:40 PM   #14 (permalink)
Darth Papa
 
ratbastid's Avatar
 
Location: Yonder
Sailor's right: burn the drive and reinstall. There's no such thing as "cleaning up" a hacked box.

FTP servers aren't very secure, but they're a necessary evil sometimes. At least make sure that whatever you install is up to date. If you install a year-old version, you'll get portscanned and banner-IDed and whatever vulnerabilities in that old version will be exploited in no time. As you found--you can be hacked within minutes of putting the service live.

When I HAVE to use FTP I install ProFTPd. I've never had it hacked. That and $3.75 gets you a Venti Latte.

There are lots of GUI tools for setting up an iptables firewalling script. Go to freshmeat and search for iptables firewall. Close every port except ftp and http. Also, make sure you don't accidentally have any other services running. Run nmap against the server and see what you get--you can be sure that the script kiddies will!
ratbastid is offline  
Old 06-27-2004, 11:37 AM   #15 (permalink)
Psycho
 
bacon_masta's Avatar
 
Location: i live in the state of denial
so a system restore won't do the trick? DAMN YOU MICROSOFT!! thanks for the advice, i'm going to stick with xp for now, guess i'll go ahead and reformat definitely plan on switching the server to linux as soon as i can convince my coder to get away from microshaft. i looked into freshmeat, and i found some great stuff. thanks for a new resource, ratbastid, and thank you sailor for the suggestions on a more secure way to update the server remotely. hopefully the server will be up and running (with CONTENT, no less) by tomorrow. i'll shout out when i get everything set up.

EDIT we're using bigdaddy's dns service
bacon_masta is offline  
Old 06-28-2004, 06:31 PM   #16 (permalink)
Psycho
 
bacon_masta's Avatar
 
Location: i live in the state of denial
redhat 9, fully updated, kernel ver 2.4.20
256 megs ram
1 ghz proc
cd, floppy
bellsouth dsl

i reformatted the server, and i'm now running redhat 9, fully updated, (kernel too, 2.4.20, as high as the distro supports). for the webserver, i'm running apache 2.0.49, and i'm not having any problems accessing the site.

my friend and i tried to configure vsftpd to allow remote updates to the web site (as i tried, as mentioned in the above post, with wftpd), but when i try to access the server (using filezilla 2.2.5) i get the following error message

Status: Connecting to 192.168.1.101 ...
Status: Connected with 192.168.1.101. Waiting for welcome message...
Error: Disconnected from server
Error: Unable to connect!

i configured iptables using the default redhat gui (might be the default kde gui) to allow connections to a webserver and an ftp server to no avail. i know it's not a problem with my router, as i'm only trying to access the ftp server from inside my domain.

i have 2 questions regarding my problem

when i formatted the machine, i selected to allow http access on port 80, but i DIDN'T set up to allow ftp access until after the install.
could this have anything to do with my problem?

the other is, if this is the problem, would configuring iptables through the console to allow connections on port 21 change anything?

once again, any advice is appreciated
bacon_masta is offline  
Old 06-30-2004, 01:12 PM   #17 (permalink)
Psycho
 
bacon_masta's Avatar
 
Location: i live in the state of denial
so once again, my webserver is up and running. redhat 9, apache 2.0.49, check it out: LOCAL SLACKERS
bacon_masta is offline  
Old 06-30-2004, 08:14 PM   #18 (permalink)
Psycho
 
bacon_masta's Avatar
 
Location: i live in the state of denial
my friend/coder killed the pc trying to add ram, so i'm gutting it for parts. no more webserver until i find another desktop, so don't try to hit the site. GOODBYE CRUEL WORLD
bacon_masta is offline  
 

Tags
webserver


Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On



All times are GMT -8. The time now is 04:28 AM.

Tilted Forum Project

Powered by vBulletin® Version 3.8.7
Copyright ©2000 - 2024, vBulletin Solutions, Inc.
Search Engine Optimization by vBSEO 3.6.0 PL2
© 2002-2012 Tilted Forum Project

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131 132 133 134 135 136 137 138 139 140 141 142 143 144 145 146 147 148 149 150 151 152 153 154 155 156 157 158 159 160 161 162 163 164 165 166 167 168 169 170 171 172 173 174 175 176 177 178 179 180 181 182 183 184 185 186 187 188 189 190 191 192 193 194 195 196 197 198 199 200 201 202 203 204 205 206 207 208 209 210 211 212 213 214 215 216 217 218 219 220 221 222 223 224 225 226 227 228 229 230 231 232 233 234 235 236 237 238 239 240 241 242 243 244 245 246 247 248 249 250 251 252 253 254 255 256 257 258 259 260 261 262 263 264 265 266 267 268 269 270 271 272 273 274 275 276 277 278 279 280 281 282 283 284 285 286 287 288 289 290 291 292 293 294 295 296 297 298 299 300 301 302 303 304 305 306 307 308 309 310 311 312 313 314 315 316 317 318 319 320 321 322 323 324 325 326 327 328 329 330 331 332 333 334 335 336 337 338 339 340 341 342 343 344 345 346 347 348 349 350 351 352 353 354 355 356 357 358 359 360